How NodeZero Enhances Cybersecurity

Teaching hospital insisted on false positive when NodeZero exploited a critical but year-old vulnerability in under one day, but…

It isn’t enough to have to have the security solution. A medical clinic with over 120 providers used best-in-class endpoint detection and response
(EDR) software. Nevertheless, NodeZero quickly identified a device’s Local Security Authority Subsystem Service Process (LSASS), dump and
cracked user credentials, moved laterally, and gained Windows Domain Administrator privileges. The result: full domain rights.

Amidst the hustle and bustle of holiday preparations and last-minute shopping, cybercriminals often take advantage of the increased online activity and spending complacency of individuals and businesses…

Stephen Gates, Principal Security SME at Horizon3.ai and Calvin Engen, Chief Technology Officer, and Managing Partner of F12.net discuss:

– Why there is a such growing demand for managed cybersecurity services.
– What’s helping F12 clients meet and exceed cybersecurity standards and best practices.
– Where Calvin thinks the security industry is headed and what technologies stand out.
– How F12 is currently using the Horizon3.ai NodeZero platform in their service offerings.

Low-Level Vulnerability Leads to Domain Compromise

Introduction Memory safety issues have plagued the software industry for decades. The Cybersecurity & Infrastructure Security Agency (CISA) has been leading a charge for secure-by-design and encouraging developers and vendors to utilize memory safe languages like...

CVE-2024-23897: Assessing the Impact of the Jenkins Arbitrary File Leak Vulnerability.

Mirth Connect, by NextGen HealthCare, is an open source data integration platform widely used by healthcare companies. Versions prior to 4.4.1 are vulnerable to an unauthenticated remote code execution vulnerability, CVE-2023-43208. If you’re a user of Mirth Connect, you’ll want to upgrade to the latest patch release, 4.4.1, as of this writing.

Businesswire: 12/01/2022 Horizon3.ai, a leading cybersecurity firm focused on autonomous penetration testing, announced its vendor profile is now available to Amazon Web Services (AWS) customers to automate and simplify the software risk assessment process. Read the...

Businesswire: 10/20/22 NodeZero was named a winner for its ability to continuously assess an enterprise's internal and external attack surface, and how it reveals the many ways in which an attacker could leverage harvested credentials, misconfigurations, dangerous...

Businesswire: 10/13/22 The SDC Awards recognize and reward products and services that are the foundation for digital transformation. NodeZero has been named a ‘Cloud Security Innovation of the Year’ finalist. NodeZero was selected for its impact on the market and...

Teaching hospital insisted on false positive when NodeZero exploited a critical but year-old vulnerability in under one day, but…

Stephen Gates, Principal Security SME at Horizon3.ai and Calvin Engen, Chief Technology Officer, and Managing Partner of F12.net discuss:

Low-Level Vulnerability Leads to Domain Compromise

CVE-2024-23897: Assessing the Impact of the Jenkins Arbitrary File Leak Vulnerability.

On Monday, 16 October, Cisco reported a critical zero-day vulnerability in the web UI feature of its IOS XE software actively being exploited by threat actors to install Remote Access Tools (RATs) and backdoor vulnerable devices exposed on the internet.

A Brand Story Conversation With Sean Martin And Snehal Antani, Co-Founder & CEO At Horizon3.ai

Horizon3.ai Senior Engineer Noah King discusses the journey of obtaining an Offensive Security Certified Professional (OSCP) certification. Whether you're a cybersecurity enthusiast or a beginner looking to explore the field, you'll learn tips and tricks to help you navigate the certification process, including: - How to get started in Offensive Security with little or no prior experience. - An understanding...

Apache Superset is a popular open source data exploration and visualization tool. In a previous post, we disclosed a vulnerability, CVE-2023-27524, affecting thousands of Superset servers on the Internet, that enables unauthorized attackers to gain admin access to these servers. We also alluded to methods that an attacker, logged in as an admin, could use to harvest credentials and execute...

Introduction Ivanti has recently published an advisory for CVE-2023-38035. The vulnerability has been added to CISA KEV and is described as an authentication bypass in the Ivanti Sentry administrator interface. This new vulnerability comes on the heels of an in-the-wild-exploited vulnerability in Ivanti EPMM (CVE-2023-35078). In this post we will take a deep dive into how this new vulnerability can...

Horizon3.ai CEO Snehal Antani discuss several real-world examples of what autonomous pentesting discovered in networks just like yours. You’ll hear more about how fast and easy it was to safely compromise some of the biggest (and smallest) networks in the world - with full domain takeover in a little more than a few hours. Learn how you can safely do...

Security Strategies

Industry Insights

Attack Research

Attack Content

Security Strategies

Industry Insights

Attack Research

Attack Content

Research Blog

Filters