Airiam and Horizon3.ai Threat Actors Webinar – Attack Simulation Jul 26, 2023Art Ocain, Field CISO at Airiam, and Naveen Sunkavally, Chief Architect at Horizon3.ai join forces in this webinar, where you will gain an in-depth understanding of threat actors and their tactics through a LIVE attack simulation.
War Stories from 15K Pentests: With Log4shell, Vulnerable ≠ Exploitable Jun 22, 2023In Horizon3.ai’s three years of operation, we have conducted more than 15,000 pentests yielding results for our clients and data for our engineers. Join our CEO, Snehal Antani, for stories from the trenches. This month we’ll take a look at the Log4shell example, and learn about how the distinction between being vulnerable and being exploitable is so important. During this session we’ll also look at how AI powered Autonomous Pentesting finally gives organizations the ability to pentest themselves at scale to quickly identify their exploitable attack surface.
Hack The Box – Mirai I exploited the Mirai machine from Hack The Box using the same technique used by the infamous Mirai malware.
CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass Deep-Dive Jan 23, 2024On January 22, 2024 Fortra posted a security advisory for their GoAnywhere MFT product. This advisory details an authentication bypass vulnerability, CVE-2024-0204, that allows an unauthenticated attacker to create an administrative user for the application. Customers...
Writeup for CVE-2023-43208: NextGen Mirth Connect Pre-Auth RCE Jan 12, 2024Mirth Connect, by NextGen HealthCare, is an open source data integration platform widely used by healthcare companies. Versions prior to 4.4.1 are vulnerable to an unauthenticated remote code execution vulnerability, CVE-2023-43208. If you’re a user of Mirth Connect, you’ll want to upgrade to the latest patch release, 4.4.1, as of this writing.
Writeup for CVE-2023-39143: PaperCut WebDAV Vulnerability Introduction Back in Aug. 2023 we released an advisory for CVE-2023-39143, a critical vulnerability that affects Windows installs of the PaperCut NG/MF print management software. Attackers can exploit this vulnerability to download and delete arbitrary files, and in...
Horizon3.ai Wins Most Promising Early-Stage Startup in 2022 SC Awards Aug 22, 2022Businesswire: 08/22/22 Horizon3.ai announced that it has been recognized as an Excellence Award winner in the Most Promising Early-Stage Startup category for the 2022 SC Awards. Now in its 25th year, the industry awards program is cybersecurity’s most prestigious and...
Horizon3.ai Named to First-ever MES Matters – Key Vendors Serving the Midmarket List Jun 29, 2022Business Wire: 06/29/22 Horizon3.ai, a cybersecurity firm focused on autonomous penetration testing, announced today that Midsize Enterprise Services (MES), a brand of The Channel Company, has recognized Horizon3.ai on its 2022 MES Matters - Key Vendors Serving the...
Horizon3.ai Named Winner of the Coveted Global InfoSec Awards during RSA Conference 2022 Jun 6, 2022Business Wire: 06/06/22 Horizon3.ai is proud to announce its NodeZero Autonomous Penetration Testing has won the Best Penetration Test Solution Award from Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine. Read entire...
12 November Maximizing Offensive Security: Addressing Shortcomings and Improving EffectivenessMaximizing Offensive Security: Addressing Shortcomings and Improving Effectiveness3:30 pmZoom Webinar
21 November Information Security ForumInformation Security Forum7:30 amOmni Boston Hotel at the Seaport
12 December Uncover Kubernetes Security Weaknesses with NodeZero™Uncover Kubernetes Security Weaknesses with NodeZero™1:00 pmZoom Webinar
Airiam and Horizon3.ai Threat Actors Webinar – Attack Simulation Jul 26, 2023Art Ocain, Field CISO at Airiam, and Naveen Sunkavally, Chief Architect at Horizon3.ai join forces in this webinar, where you will gain an in-depth understanding of threat actors and their tactics through a LIVE attack simulation.
War Stories from 15K Pentests: With Log4shell, Vulnerable ≠ Exploitable Jun 22, 2023In Horizon3.ai’s three years of operation, we have conducted more than 15,000 pentests yielding results for our clients and data for our engineers. Join our CEO, Snehal Antani, for stories from the trenches. This month we’ll take a look at the Log4shell example, and learn about how the distinction between being vulnerable and being exploitable is so important. During this session we’ll also look at how AI powered Autonomous Pentesting finally gives organizations the ability to pentest themselves at scale to quickly identify their exploitable attack surface.
Hack The Box – Mirai I exploited the Mirai machine from Hack The Box using the same technique used by the infamous Mirai malware.
CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass Deep-Dive Jan 23, 2024On January 22, 2024 Fortra posted a security advisory for their GoAnywhere MFT product. This advisory details an authentication bypass vulnerability, CVE-2024-0204, that allows an unauthenticated attacker to create an administrative user for the application. Customers...
Writeup for CVE-2023-43208: NextGen Mirth Connect Pre-Auth RCE Jan 12, 2024Mirth Connect, by NextGen HealthCare, is an open source data integration platform widely used by healthcare companies. Versions prior to 4.4.1 are vulnerable to an unauthenticated remote code execution vulnerability, CVE-2023-43208. If you’re a user of Mirth Connect, you’ll want to upgrade to the latest patch release, 4.4.1, as of this writing.
Writeup for CVE-2023-39143: PaperCut WebDAV Vulnerability Introduction Back in Aug. 2023 we released an advisory for CVE-2023-39143, a critical vulnerability that affects Windows installs of the PaperCut NG/MF print management software. Attackers can exploit this vulnerability to download and delete arbitrary files, and in...
Horizon3.ai Wins Most Promising Early-Stage Startup in 2022 SC Awards Aug 22, 2022Businesswire: 08/22/22 Horizon3.ai announced that it has been recognized as an Excellence Award winner in the Most Promising Early-Stage Startup category for the 2022 SC Awards. Now in its 25th year, the industry awards program is cybersecurity’s most prestigious and...
Horizon3.ai Named to First-ever MES Matters – Key Vendors Serving the Midmarket List Jun 29, 2022Business Wire: 06/29/22 Horizon3.ai, a cybersecurity firm focused on autonomous penetration testing, announced today that Midsize Enterprise Services (MES), a brand of The Channel Company, has recognized Horizon3.ai on its 2022 MES Matters - Key Vendors Serving the...
Horizon3.ai Named Winner of the Coveted Global InfoSec Awards during RSA Conference 2022 Jun 6, 2022Business Wire: 06/06/22 Horizon3.ai is proud to announce its NodeZero Autonomous Penetration Testing has won the Best Penetration Test Solution Award from Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine. Read entire...
12 November Maximizing Offensive Security: Addressing Shortcomings and Improving EffectivenessMaximizing Offensive Security: Addressing Shortcomings and Improving Effectiveness3:30 pmZoom Webinar
21 November Information Security ForumInformation Security Forum7:30 amOmni Boston Hotel at the Seaport
12 December Uncover Kubernetes Security Weaknesses with NodeZero™Uncover Kubernetes Security Weaknesses with NodeZero™1:00 pmZoom Webinar
