The Key to Building Cyber Resilience for MSSPs
Cybersecurity awareness is transforming every aspect of the organizational landscape. Cybersecurity is no longer relegated to security backrooms – it is front and center…
CVE-2023-50164 – Remote Code Execution (RCE) Flaw in Apache Struts
On Dec 7th, open-source web server software provider Apache disclosed a new vulnerability with a CVSS score of 9.8, which is currently being tracked…
Using Kubernetes Raises Security Stakes: Three Attack Paths
There’s really no question when it comes to which container orchestration platform leads the market – yeah you guessed it, It’s Kubernetes. In recent…
Here is What We’re Thankful for This Thanksgiving
Thanksgiving is the perfect opportunity to focus on, well, being thankful. It’s a time to reflect on the bounty we experience each day, and…
CVE-2023-46604 – Remote Code Execution (RCE) Flaw in Apache ActiveMQ
On Oct 27th, open-source web server software provider Apache disclosed a new vulnerability with a CVSS score of 10, which is currently being tracked…
One Top-Tier Automotive Giant, Two Dangerous Attack Paths
It likely comes as no great surprise – cybersecurity is a paramount concern in the automotive industry. For all of the same reasons it’s…
The TIBER-EU Framework: Here’s What You Need to Know
Compliance frameworks aren’t always the most fascinating of topics, but they are always important topics. Today we’re looking at TIBER-EU (Threat Intelligence-Based Ethical Red…
Now That Cyber Awareness Month is Over, Don’t Forget These Tips and Best Practices
When it comes to cyber awareness, a lot of professionals (you, perhaps?) may assume that being “in the know” means there’s nothing left to…
Gartner Trends: In 2024, CTEM is Top Priority for Enterprises
Well, it’s almost the end of the year and you know what that means? It’s time for all the predictions/wrap up/upcoming trends blogs and…
Four Real-Life Financial Service Attacks Paths
Back in the wild west, there was this guy, Willie Sutton. Willie’s chosen profession wasn’t the town dentist-barber or saloon owner. Nope, he was…
New Name, Same Risks: Two Microsoft Entra ID Attack Paths
For those not yet aware, Microsoft Entra ID is the new name for Azure AD, just announced this July. By way of brief history,…
Pentesting, Red Teaming, BAS tools, RBVM, Exposure Management – The Many Options for Addressing Exposures
Pentesting, Red Teaming, Breach and Attack Simulation, RBVM, Exposure Management – Oh My! Your Guide to the MANY Options for Addressing Exposures Here’s a…
Find and fix the exposures that put your critical assets at risk with ultra-efficient remediation.