Syndicated Blog

Gartner® Report Hype Cycle™ for Security Operations, 2024

Horizon3.ai | August 30, 2024 | Enterprise Leadership, research

In our groundbreaking 2023 Annual Review, Horizon3.ai delves into the transformative approach of autonomous pentesting with NodeZero. This pivotal document is your gateway to mastering proactive cybersecurity defense mechanisms. The post Gartner® ...

Horizon3.ai

NTLM Credential Theft in Python Windows Applications

Naveen Sunkavally | August 23, 2024 | Attack Blogs, Attack Research, Disclosures, Security Practitioner

This post walks through the vulnerabilities we disclosed affecting Gradio, and our work with Hugging Face to harden the Spaces platform after a recently reported potential breach. The post NTLM Credential Theft ...

Horizon3.ai

Traccar 5 Remote Code Execution Vulnerabilities

Naveen Sunkavally | August 23, 2024 | Attack Blogs, Attack Research, Disclosures, Security Practitioner

Horizon3.ai

Mastering Cloud Security: Uncovering Hidden Vulnerabilities with NodeZero™

Stephen Gates | August 21, 2024 | Cloud, Cybersecurity, Enterprise Leadership, Industry Insights, Security Practitioner

Master cloud security with NodeZero™ Cloud Pentesting. Easily uncover vulnerabilities across AWS and Azure, prioritize identity risks, and secure your environment in just minutes. Stay ahead of threats. The post Mastering Cloud ...

Horizon3.ai

Future-Proofing Cities: LYT’s Story

Horizon3.ai | July 19, 2024 | Customer Stories, Enterprise Leadership

As cities expand with smart technologies to enhance infrastructure, robust cybersecurity is crucial. Discover how continuous assessments with NodeZero keep urban operations safe and efficient. The post Future-Proofing Cities: LYT’s Story appeared ...

Horizon3.ai

Ensuring Cybersecurity: Horizon3.ai’s Rapid Response Service in Action

Stephen Gates | July 10, 2024 | Cybersecurity, Enterprise Leadership, healthcare, Industry Insights, Security Practitioner

How Horizon3.ai’s Rapid Response Identified and Mitigated a Critical Mirth Connect Vulnerability A key consideration in cybersecurity is determining whether a known software vulnerability is actually exploitable. This often depends on how ...

Horizon3.ai

Enhancing Vulnerability Management: Integrating Autonomous Penetration Testing

Stephen Gates | June 17, 2024 | Cybersecurity, Enterprise Leadership, Industry Insights, Security Practitioner, vulnerability scanning

Traditional vulnerability scanning tools are enhanced with NodeZero's autonomous penetration testing, revolutionizing Vulnerability Management by providing comprehensive risk assessment, exploitability analysis, and cross-host vulnerability chaining, empowering organizations to prioritize and mitigate security ...

Horizon3.ai

Exploiting File Read Vulnerabilities in Gradio to Steal Secrets from Hugging Face Spaces

Naveen Sunkavally | June 14, 2024 | Attack Blogs, Attack Research, Disclosures, Security Practitioner

Horizon3.ai

CVE-2024-29824 Deep Dive: Ivanti EPM SQL Injection Remote Code Execution Vulnerability

James Horseman | June 12, 2024 | Attack Blogs, Attack Research

Introduction Ivanti Endpoint Manager (EPM) is an enterprise endpoint management solution that allows for centralized management of devices within an organization. On May 24, 2024, ZDI and Ivanti released an advisory describing ...

Horizon3.ai

The Critical Role of Autonomous Penetration Testing in Strengthening Defense in Depth

Horizon3.ai | June 10, 2024 | Customer Stories, Enterprise Leadership

NodeZero helps JTI Cybersecurity scale by automating penetration testing, finding vulnerabilities, and enhancing client security efficiently and effectively. The post The Critical Role of Autonomous Penetration Testing in Strengthening Defense in Depth ...

Horizon3.ai

Syndicated Blog

Gartner® Report Hype Cycle™ for Security Operations, 2024

NTLM Credential Theft in Python Windows Applications

Traccar 5 Remote Code Execution Vulnerabilities

Mastering Cloud Security: Uncovering Hidden Vulnerabilities with NodeZero™

Future-Proofing Cities: LYT’s Story

Ensuring Cybersecurity: Horizon3.ai’s Rapid Response Service in Action

Enhancing Vulnerability Management: Integrating Autonomous Penetration Testing

Exploiting File Read Vulnerabilities in Gradio to Steal Secrets from Hugging Face Spaces

CVE-2024-29824 Deep Dive: Ivanti EPM SQL Injection Remote Code Execution Vulnerability

The Critical Role of Autonomous Penetration Testing in Strengthening Defense in Depth

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

Introducing Goffloader: A Pure Go Implementation of an In-Memory COFFLoader and PE Loader

The Role of Digital Adoption in Email Deliverability & Security

Demystifying SOC 2 Compliance for Startups: A Simple Guide

Happy Canada Labour Day! / Bonne Fête du Travail Canadienne!

Happy United States Labor Day 2024 / Feliz Fin de Semana del Día del Trabajo de Estados Unidos 2024 / Joyeux Fin de Semaine de la Fête du Travail aux États-Unis 2024