Anda mungkin suka
CVE-2022-39952, announced today, allows for unauthenticated RCE against #Fortinet FortiNAC as the root user. Blog post and POC to be released soon. See Fortinet's PSIRT: fortiguard.com/psirt/FG-IR-22…
“The ease of use, customization options for setting up scans, and amount of actionable #data and evidence that is presented for our developers is incredible,” says a Security Engineer in #HigherEd when asked about what they like most about our #product. gartner.com/reviews/market…
#CVE 2022-40864 is one of many dangerous vulnerabilities to come out in the last year. Knowing how a #vulnerability can be exploited, why it’s dangerous, and what to do about it are just the first steps in securing your #hybridcloud network. youtube.com/watch?v=vTReUp… @theCUBE
TMCnet’s 2022 #CloudSecurity Excellence Awards recognized solutions that demonstrate leadership, innovation and quality in keeping up with the evolving threat landscape. Happy to share that NodeZero was one of those winners. bwnews.pr/3DdLzlG
Yeah we did...
Another appliance vuln down... CVE-2022-40684, affecting multiple #Fortinet solutions, is an auth bypass that allows remote attackers to interact with all management API endpoints. Blog post and POC coming later this week. Patch now.
Another appliance vuln down... CVE-2022-40684, affecting multiple #Fortinet solutions, is an auth bypass that allows remote attackers to interact with all management API endpoints. Blog post and POC coming later this week. Patch now.
A huge #congratulations to our Horizon3ai team at the Fall #MES in LV! Of 60+ peers, we were nominated Top 4 for the XCellence in Boardroom Presentation & XCellence in Solution Pavilion Strategy categories, & also #won the XCellence in Solutions Track Presentation!
Don’t let #ransomware be a cause of stress. Try out #NodeZero by Horizon3ai today. horizon3.ai/ransomware/ #cybermeme #cybersecurity #meme #data #networksecurity
It's been half a year since #Log4Shell broke. Our latest post details how common CVE-2021-44228 still is and how easy it is to exploit for low-skilled attackers. POCs for: 💥 VMware Site Recovery Manager 💥 Elasticsearch 5 💥 OpenNMS horizon3.ai/the-long-tail-… #CyberSecurity
The new F5 RCE vulnerability, CVE-2022-1388, is trivial to exploit. We spent some time chasing unrelated diffs within the newest version, but @jameshorseman2 ultimately got first blood. We'll release a POC next week to give more time for orgs to patch. #f5 #CyberSecurity
In December, Habibeh Deyhim joined Horizon3 as a #Manager on the #CustomerSuccess team! Habibeh is passionate about her job, always willing to give input and lend a helping hand. In her free time, Habibeh is fervent about #socialcauses including #education and #homelessness.
Today we celebrate #women in #STEM! #Horizon3 is proud to boast about the amazing women in our company. From diverse backgrounds, with a wide range of abilities and specialties, the Horizon3 women are true BAMF's. #womeninstem #womenincybersecurity #womenintech #womeninscience
If there's one crucial difference to know about between Vulnerability Management (VM) and Attack Path Management (APM), it's this: VM tells you the impact something has to one host. APM tells you the impact something has to the entire organization.
A variety of #security tools have come up recently to assist companies in remediating #Log4Shell. Most of the tools stop at the point of detecting. Read our newest @Horizon3Attack #redteam blog on how to exploit it like an attacker would. #log4j2 #NodeZero hubs.ly/Q011FPys0
🫀this. These are my resolutions for the coming year...
Great storytelling is a gift to your audience. You can give them this gift by studying the principles that have helped stories shape culture. I've used these ideas to craft stories that have reached millions. Here's 7 ways to improve your storytelling:
Stay frosty out there, y'all....
Happy Holidays from @Horizon3ai! Our goal is to create a bias for action – helping you quickly find, fix, and verify. With #NodeZero, you can proactively find and fix #attackvectors before attackers #exploit them – then verify your fixes worked. More here: horizon3.ai/nodezero/
1/n We're a week into #log4shell. Here's what to know going into the weekend: 1. Log4j < 2.15 is widely exploitable to RCE via CVE-2021-44228. 2. The Log4j 2.15 patch was insufficient and in some cases allows RCE via CVE-2021-45046. logging.apache.org/log4j/2.x/secu…
Researching the impacts of CVE-2021-44228, the most interesting insight is that prior 2018 (Java8 u191) Java shipped easily exploitable and log4j2 has been vuln since 2012. From 2012-2018 any Java app that included log4j is in the sweet spot for attackers. horizon3.ai/cve-2021-44228/
United States Tren
- 1. FINALLY DID IT 422 B posts
- 2. The BONK 169 B posts
- 3. The PENGU 206 B posts
- 4. The Jito 31,7 B posts
- 5. #IDontWantToOverreactBUT N/A
- 6. Good Monday 43,4 B posts
- 7. Hobi 48,1 B posts
- 8. Monday of 2025 12,8 B posts
- 9. #MondayMotivation 7.138 posts
- 10. #HappyBirthdayTaehyung 27,3 B posts
- 11. Victory Monday N/A
- 12. #MondayVibes 2.479 posts
- 13. #keychain 2.394 posts
- 14. Jack White 2.797 posts
- 15. Sweet Angel Child Care 28,1 B posts
- 16. Flossie 4.004 posts
- 17. Taiwan 70,3 B posts
- 18. Bijan 2.986 posts
- 19. Nick Shirley 533 B posts
- 20. Tehran 43,6 B posts
Something went wrong.
Something went wrong.