Resource Center

Welcome to our cybersecurity resource center where we uncover how malicious actors exploit weaknesses in systems, while going beyond the technical aspects and examining real-world perspectives across various industries.

LATEST VULNERABILITIES

WEBINAR REPLAY

SEARCH

CATEGORIES

TAGS

    Video

    Tech Talk: The Attackers Journey Pt. 6

    Noah King, one of Horizon3's front-end developers, is inviting you into his experience as he learns to be an expert at ethical hacking and get his OSCP cert!
    Watch Now →
    Video

    Go Hack Yourself: 5 Crazy Ways NodeZero Became Domain Admin

    Attackers don't have to "hack in" using zero-day vulnerabilities. Often, attackers log in by chaining together misconfigurations, dangerous product defaults, and exploitable vulnerabilities to harvest and reuse credentials. This session will discuss five real-world attacks that enabled Horizon3.ai to become domain administrator, gain access to sensitive data, take over cloud VPCs, and compromise critical business…
    Watch Now →
    Blogs

    An International Look at Cybercrime

    August 29, 2022
    Authoritarian regimes have learned in recent years that cybercrime can be a profitable economic enterprise ­– so much so that they continue to invest substantial resources in large- and small-scale cybercrime.
    Read More →
    Blogs

    Beyond Password Issues: How NodeZero Found Access to an Organization’s Azure Cloud Environment  

    August 25, 2022
    NodeZero is a generational leap beyond a traditional pentest – organizations often see that for themselves from the moment they give our autonomous pentesting platform a shot. NodeZero surfaces risks and weaknesses that would never have come up during a general vulnerability scan as it chains together attack tactics and techniques to illuminate your most…
    Read More →
    Lines of code with password hashes highlighted
    Video

    The Attackers Perspective Through Splunk Data & Workflows

    As the industry accelerates toward a threat landscape of attack and defense by algorithm and machine, humans must run at machine speed to manage the stakes of tool misconfiguration, mishandling of logs, and missed patching opportunities. The NodeZero app for Splunk is a force multiplier—combining attacker insights into your unique environment with your existing Splunk…
    Watch Now →
    Customer Stories

    NodeZero: Filling a Unique Niche in Cybersecurity

    August 23, 2022
    IT and cybersecurity team from a U.S.-based management consulting organization improve their penetration testing with NodeZero by Horizon3.ai
    Read More →
    Customer Story - NodeZero: Filling a Unique Niche in Cybersecurity
    Whitepapers

    Healthcare IT – Far Beyond HIPAA Compliance

    August 19, 2022
    Take a deeper look at critical threats against the healthcare sector and how to overcome the industry’s specific challenges.
    Read More →
    Blogs

    One Weak Password Leads to Compromise

    August 17, 2022
    NodeZero, discovered a customer’s host that had not appeared in previous pentests due to a small change in their configuration.
    Read More →
    Chain with weak link with password text overlayed on top
    Customer Stories

    Higher Education Institution Finds a Real Look at Vulnerabilities and Exploits with NodeZero

    August 8, 2022
    When the Desert Research Institute (DRI) of Reno, NV, a higher education organization focusing on applied environmental research, needed a way to run penetration testing and vulnerability scanning at an affordable cost, they found NodeZero.
    Read More →
    Customer Story - Higher Education Institution Finds Easier, Better Scanning with NodeZero
    Whitepapers

    The Shortcomings of Traditional Penetration Tests

    July 29, 2022
    Companies tend to conduct pentests in flawed ways. Now a better, more automated, and faster approach to pentesting has arrived.
    Read More →
    The Shortcomings of Traditional Penetration Tests —and How Autonomous Pentesting Addresses Them