Horizon3.ai

SEARCH

CATEGORIES

TAGS

    The Purple Pivot

    November 18, 2021
    This Red vs. Blue approach to cybersecurity is unsustainable, and often does more harm than good. The goal should be Red AND Blue, working together.

    Multiple Vulnerabilities in ResourceSpace

    November 9, 2021
    During our assessment of the ResourceSpace code base, we found three new vulnerabilities that could be exploited by an unauthenticated attacker. The most critical is CVE-2021-41765, a pre-auth SQL injection that an attacker can abuse to gain remote code execution (RCE) privileges on the ResourceSpace server.

    Credential Misconfigurations

    October 25, 2021
    Are your credential policies implemented right? Are your enterprise accounts configured correctly? How do you know? Most phishing, ransomware, and credential attacks start by gaining access to a host and compromising a domain user (Credential Attacks – Horizon3.ai). With a credential in hand, an attacker can persist and pervade, appearing like a legitimate user and…
    Credential Misconfigurations - Abstract cubes that don't fit together properly.

    Exposed & Exploited

    October 16, 2021
    While so many are focused on vulnerabilities and malware on endpoints, understanding the attack paths an attacker would exploit to hold your business and brand at risk is key.
    Whitepaper: Exposed and Exploited

    Vulnerable ≠ Exploitable

    September 19, 2021
    The hardest part of cyber security is deciding what NOT to do. Being vulnerable doesn’t mean you’re exploitable.

    The Password Pandemic

    September 10, 2021
    Credential attacks bypass traditional defenses and cause billions in damage. Learn why they work, what’s at risk, and how Horizon3.ai helps fix what matters.

    Compliance In Security: Go from Compliant to Secure

    August 17, 2021
    Learn why regulatory compliance is not enough for true cybersecurity. Discover how continuous automated pentesting and network segmentation help you move beyond check-the-box security.

    Be Open to Be Wow’d

    July 29, 2021
    Being a #learnitall, Lesson 1: Be Open to Be Wow’d Most of the startup advice out there is pretty clear: get feedback early and often. Customer input is invaluable to delivering iter0, your MVP, feature releases that matter, bug fixes, utility and simplicity. In Customer Success, a lot of the job is review and advise so…
    Emoji making a surprised face

    Tech Talk: Compliance in Security

    In the world of network security, compliance is the bare minimum. Compliance is locking your door, but what about your windows?
    Compliance in Security Tech Talk