Resource Center
Welcome to our cybersecurity resource center where we uncover how malicious actors exploit weaknesses in systems, while going beyond the technical aspects and examining real-world perspectives across various industries.
Filters
Showing 151–156 of 473 results
You Can’t Manage Risk if You Lack Context
Low-Level Vulnerability Leads to Domain Compromise
Read More 
War Stories from 15K Pentests: With Log4shell, Vulnerable ≠ Exploitable
In Horizon3.ai's three years of operation, we have conducted more than 15,000 pentests yielding results for our clients and data for our engineers. Join our CEO, Snehal Antani, for stories from the trenches. This month we'll take a look at the Log4shell example, and learn about how the distinction between being vulnerable and being exploitable is so important. During this...
Read More 
INSIGHT – MOVEit Zero-Day Reminds Us Yet Again to Be Diligent in Monitoring Our IT Infrastructure
Over the last week, the widely reported critical security flaw in the Progress MOVEit Transfer application (CVE-2023-34362) reminded us yet again to remain vigilant in securing our IT infrastructure from potential cyber threat actors.
Read More Horizon3.ai, Specialist for Autonomous Penetration Testing, Enters UK Market with Leading IT Partner Companies
Press Portal 06/15/2023 Horizon3.ai is announcing several high-profile partnerships to expand its market presence in the United Kingdom and is increasing the availability of NodeZero to enterprises in that region. NodeZero is an AI-based penetration testing platform delivered as a true SaaS offering. Organizations of all sizes use NodeZero to discover and help remediate security risks within their IT infrastructures…....
Read More 
MOVEit Transfer CVE-2023-34362 Deep Dive and Indicators of Compromise
On May 31, 2023, Progress released a security advisory for their MOVEit Transfer application which detailed a SQL injection leading to remote code execution and urged customers to update to the latest version. The vulnerability, CVE-2023-34362, at the time of release was believed to have been exploited in-the-wild as a 0-day dating back at least 30 days. Soon after publication,...
Read More 
Clients Want Assessments to Prove Service Efficacy
Gartner® recently published a report called, Emerging Tech: Grow Your Security Service Revenue with Cybersecurity Validations. We believe the report provides research from a buyer’s perspective on security services they purchase while offering guidance to MSPs and MSSPs on how to improve retention and upsell rates of the critical services they provide. So, what has Gartner discovered, and what do...
Read More