Resource Center

Welcome to our cybersecurity resource center where we uncover how malicious actors exploit weaknesses in systems, while going beyond the technical aspects and examining real-world perspectives across various industries.

LATEST VULNERABILITIES

Bomb Streamline Icon: https://streamlinehq.com

CVE-2025-20281

Cisco ISE API Unauthenticated Remote Code Execution Vulnerability
Read More →
Bomb Streamline Icon: https://streamlinehq.com

CVE‑2025‑47812

Wing FTP
Read More →

WEBINAR REPLAY

SEARCH

CATEGORIES

TAGS

    Infographics

    Key Insights from Over 50,000 NodeZero® Pentests Infographic

    April 10, 2025
    Key findings from Horizon3.ai’s Annual Insights Report, powered by NodeZero® data and a survey of 800+ CISOs and IT pros.
    Read More →
    Attack Blogs, Disclosures

    Unsafe at Any Speed: Abusing Python Exec for Unauth RCE in Langflow AI

    April 9, 2025
    CVE-2025-3248 is a critical code injection vulnerability affecting Langflow, a popular tool used for building out agentic AI workflows. This vulnerability is easily exploitable and enables unauthenticated remote attackers to fully compromise Langflow servers. The issue is patched in Langflow 1.3.0.
    Read More →
    Video

    Speed Through Uncertainty: The Find, Fix, Verify Loop for Exposure Management

    See how autonomous pentesting with NodeZero helps you find, fix, and verify cyber risks fast—no more waiting weeks for answers.
    Watch Now →
    Blogs

    NodeZero® Release Recap: Spring Edition

    April 7, 2025
    Spring updates are here! Explore NodeZero’s latest threat detection, pentest, and insights features—built to stay ahead of attackers.
    Read More →
    NodeZero UI
    Blogs

    There’s More To Our Annual Report: The State of Cybersecurity in 2025

    April 2, 2025
    Discover hidden cybersecurity risks from our 2025 report. Unfiltered insights on BAS, compliance pitfalls, third-party threats & more.
    Read More →
    The State of Cybersecurity in2025. Two copies of the report, one closed and the other open to the first page, lay on top of a red and purple neon grid. The grid fading to the starry dark blue-black background.
    Attack Blogs

    CrushFTP Authentication Bypass: Indicators of Compromise

    March 27, 2025
    CrushFTP auth bypass (CVE-2025-2825) could grant attackers admin access. Learn IoCs & test exposure with NodeZero. Patch now!
    Read More →
    Research

    The State of Cybersecurity in 2025: Data-Driven Insights from Over 50,000 NodeZero® Pentests

    March 26, 2025
    Insights from 50K+ NodeZero®️ pentests reveal why offensive security is key in 2025. Learn how to move beyond compliance and close critical gaps.
    Read More →
    Attack Blogs

    Critical or Clickbait: GitHub Actions and Apache Tomcat RCE Vulnerabilities 2025

    March 21, 2025
    Explore CVE-2025-30066 and CVE-2025-24813 with real-world data from Horizon3.ai to assess whether these vulnerabilities are truly critical or overhyped.
    Read More →
    Red alarm light against a metal wall with vertical ridges
    Video

    Fireside Chat: Horizon3.ai and Adaptic LLC

    DoD supply chain cyber threats are surging. Learn how CAPT helps suppliers find, fix & verify gaps with scalable, autonomous security testing.
    Watch Now →
    Fireside Chat: Horizon3.ai and Adaptic LLC
    Blogs

    Is Continuous Threat Exposure Management right for you?

    March 12, 2025
    The CTEM framework has the right goals. NodeZero takes the bloat out of achieving them.
    Read More →
    Person approaching mountain.