CISA’s Ransomware Vulnerability Awareness Pilot: But Is It Enough? May 31, 2023In early 2023, CISA launched their Ransomware Vulnerability Awareness Pilot (RVWP). It’s designed to warn critical infrastructure (CI) entities that their systems have exposed vulnerabilities that may be exploited by ransomware threat actors. The plan is to identify affected systems that may be prevalent in CI networks, then notify operators about potential risk of exploitation. The idea behind this is to enable timely mitigation measures before the damage is done in the context of ransomware attacks.
How an Attack Team Hunts New Exploits May 16, 2023Hear directly from Zach Hanley, one of Horizon3.ai’s founding engineers as he walks you through a recent critical vulnerability case study. He is joined on this session by Scott Friedman, one of our Sales Engineers.
Introducing the New Face of NodeZero May 16, 2023Hear directly from two of Horizon3.ai’s founding engineers – Naveen Sunkavally, Chief Architect, and Rob Alderman, Data Architect – as they walk you through an exclusive tour of NodeZero’s latest product refresh.
Hack The Box – Active After my last walkthrough of a machine named Blue on the Hack The Box platform, I received some flak from my humanoid counterparts saying that my work was less than impressive. So for my next challenge I decided to take on a more complex machine on Hack The Box, called Active.
AWS Misconfiguration Leads to Buckets of Data Dec 8, 2023Misconfigured AWS Role Enables Cloud Initial Access
Apache ActiveMQ RCE Leads to Domain Compromise Dec 1, 2023Pervasive CISA Known Exploited Vulnerability Enables Initial Access
Apache Superset Part II: RCE, Credential Harvesting and More Apache Superset is a popular open source data exploration and visualization tool. In a previous post, we disclosed a vulnerability, CVE-2023-27524, affecting thousands of Superset servers on the Internet, that enables unauthorized attackers to gain admin access to...
Horizon3.ai Named Finalist for Most Promising Early-Stage Startup in 2022 SC Awards May 18, 2022Horizon3.ai, a cybersecurity firm focused on autonomous penetration testing, today announced that it has been recognized as an Excellence Award finalist in the Most Promising Early-Stage Startup category for the 2022 SC Awards. Now in its 25th year, the SC Awards are cybersecurity’s most prestigious and competitive program. Finalists are recognized for outstanding solutions, organizations, and people driving innovation and success in information security.
Horizon3.ai Named a Leading Security Visionary in EMA’s Premier Vendor Vision Report Created for the 2022 RSA Conference May 12, 2022Business Wire: 05/12/22 Horizon3.ai, a cybersecurity firm focused on autonomous penetration testing, today announced its inclusion in the prestigious Vendor Vision 2022 Report, newly issued by Enterprise Management Associates (EMA), a leading IT and data management...
21 November Information Security ForumInformation Security Forum7:30 amOmni Boston Hotel at the Seaport
21 November Are You Secure? Discover Actionable Security Insights with NodeZeroAre You Secure? Discover Actionable Security Insights with NodeZero9:40 amAMA Executive Conference Center
12 December Uncover Kubernetes Security Weaknesses with NodeZero™Uncover Kubernetes Security Weaknesses with NodeZero™1:00 pmZoom Webinar
CISA’s Ransomware Vulnerability Awareness Pilot: But Is It Enough? May 31, 2023In early 2023, CISA launched their Ransomware Vulnerability Awareness Pilot (RVWP). It’s designed to warn critical infrastructure (CI) entities that their systems have exposed vulnerabilities that may be exploited by ransomware threat actors. The plan is to identify affected systems that may be prevalent in CI networks, then notify operators about potential risk of exploitation. The idea behind this is to enable timely mitigation measures before the damage is done in the context of ransomware attacks.
How an Attack Team Hunts New Exploits May 16, 2023Hear directly from Zach Hanley, one of Horizon3.ai’s founding engineers as he walks you through a recent critical vulnerability case study. He is joined on this session by Scott Friedman, one of our Sales Engineers.
Introducing the New Face of NodeZero May 16, 2023Hear directly from two of Horizon3.ai’s founding engineers – Naveen Sunkavally, Chief Architect, and Rob Alderman, Data Architect – as they walk you through an exclusive tour of NodeZero’s latest product refresh.
Hack The Box – Active After my last walkthrough of a machine named Blue on the Hack The Box platform, I received some flak from my humanoid counterparts saying that my work was less than impressive. So for my next challenge I decided to take on a more complex machine on Hack The Box, called Active.
AWS Misconfiguration Leads to Buckets of Data Dec 8, 2023Misconfigured AWS Role Enables Cloud Initial Access
Apache ActiveMQ RCE Leads to Domain Compromise Dec 1, 2023Pervasive CISA Known Exploited Vulnerability Enables Initial Access
Apache Superset Part II: RCE, Credential Harvesting and More Apache Superset is a popular open source data exploration and visualization tool. In a previous post, we disclosed a vulnerability, CVE-2023-27524, affecting thousands of Superset servers on the Internet, that enables unauthorized attackers to gain admin access to...
Horizon3.ai Named Finalist for Most Promising Early-Stage Startup in 2022 SC Awards May 18, 2022Horizon3.ai, a cybersecurity firm focused on autonomous penetration testing, today announced that it has been recognized as an Excellence Award finalist in the Most Promising Early-Stage Startup category for the 2022 SC Awards. Now in its 25th year, the SC Awards are cybersecurity’s most prestigious and competitive program. Finalists are recognized for outstanding solutions, organizations, and people driving innovation and success in information security.
Horizon3.ai Named a Leading Security Visionary in EMA’s Premier Vendor Vision Report Created for the 2022 RSA Conference May 12, 2022Business Wire: 05/12/22 Horizon3.ai, a cybersecurity firm focused on autonomous penetration testing, today announced its inclusion in the prestigious Vendor Vision 2022 Report, newly issued by Enterprise Management Associates (EMA), a leading IT and data management...
21 November Information Security ForumInformation Security Forum7:30 amOmni Boston Hotel at the Seaport
21 November Are You Secure? Discover Actionable Security Insights with NodeZeroAre You Secure? Discover Actionable Security Insights with NodeZero9:40 amAMA Executive Conference Center
12 December Uncover Kubernetes Security Weaknesses with NodeZero™Uncover Kubernetes Security Weaknesses with NodeZero™1:00 pmZoom Webinar
