New at Horizon3.ai

Mythos has collapsed the attack path. | Learn how to prove your defenses now. →

Blogs

SEARCH

CATEGORIES

TAGS

    Blogs

    AI-Accelerated Exploitation: The Mythos-Era Threat Model

    AI models like Mythos collapse the gap between discovery and exploitation. Learn how to rethink your threat model before attackers do.
    Read More →
    Attack Blogs, Attack Research, Blogs, Disclosures

    CVE-2026-48558: SimpleHelp Authentication Bypass Indicators of Compromise

    June 12, 2026
    Horizon3.ai details indicators of compromise, affected configurations, and mitigation guidance for CVE-2026-48558, a SimpleHelp OIDC authentication bypass vulnerability.
    Read More →
    Security research illustrating CVE-2026-48558 authentication bypass affecting SimpleHelp OIDC deployments
    Blogs

    AI-Powered Exploit Generation: Speed, Scale & Cyber Risk

    Learn how AI-powered exploit generation collapses the discovery-to-impact gap, accelerates attack chains, and why exploitability-first validation is now essential.
    Read More →
    Blogs

    Autonomous Penetration Testing: The Buyer’s Decision Guide

    Compare autonomous pentesting vs. scanners, BAS, and traditional pentests. Learn what to evaluate, what the limits are, and how to run a proof of value.
    Read More →
    Blogs

    Patch Tuesday to Pentest Wednesday: How a Global Investment Firm Reduced Security Surprises

    June 10, 2026
    A global investment firm used NodeZero® to reduce attack-path impacts from 251 to 0, eliminate compromised credentials, and build a continuous security validation program across 18 locations.
    Read More →
    Pentest Wednesday banner featuring NodeZero and the Find-Fix-Verify security testing rhythm
    Blogs

    Claude Mythos & Enterprise Security: Your Questions Answered

    What is Claude Mythos and how does it affect enterprise security? Get clear answers on exploitability, attack paths, and how to respond with NodeZero.
    Read More →
    Blogs

    The First AI State-Sponsored Attack: What It Means for Defenders

    In November 2025, Anthropic disclosed the first AI-orchestrated state-sponsored cyberattack. Here's what GTG-1002 actually changes for security teams.
    Read More →
    Blogs

    The Exploit Window Is Shrinking. Most Security Workflows Are Not.

    June 1, 2026
    AI is accelerating vulnerability discovery and attacker weaponization. Learn how Rapid Response helps organizations validate exposure, reduce uncertainty, and close the exploit window faster.
    Read More →
    NodeZero Rapid Response dashboard showing confirmed exploitable assets, vulnerability validation results, and emerging threat prioritization
    Blogs

    AI Has Ideas. sqlmap Has Receipts.

    May 29, 2026
    AI can identify potential SQL injection opportunities, but deterministic validation is what builds trust. Learn how NodeZero® combines LLM-guided discovery with sqlmap to deliver high-confidence findings.
    Read More →
    Blogs

    You’re Only as Secure as Your Last Evaluation

    May 18, 2026
    CMMC is shifting cybersecurity from periodic compliance to continuous validation across the Defense Industrial Base supply chain.
    Read More →
    Chart showing the phased implementation timeline for updated CMMC requirements across the Defense Industrial Base