Resource Center

NodeZero identified those critical few vulnerabilities that are actually exploitable, allowing us to maximize increased security with minimum effort.

As the Information Technology Security Officer for the City of St. Petersburg, FL, Brian Campbell is always on the lookout for ways to elevate the city’s security posture. A cold phone call from Horizon3.ai led to a test run of NodeZero, with its capacity to save time and effort assessing and addressing potential weaknesses.

The NodeZero™ platform helps organizations improve SecOps productivity and save on third-party pentest & vulnerability scanner costs. Learn how in the commissioned Forrester Consulting Total Economic Impact™ study. Download the Study

Join this dynamic conversation with Guest Forrester Consultant Luca Son and Horizon3.ai CEO and Co-Founder Snehal Antani. Our featured speakers will explore the findings of the new The Total Economic Impact™ (TEI) of the NodeZero Platform, a study Horizon3.ai commissioned from Forrester Consulting.

You’ll learn about:
The challenges these security teams hoped faced with costly, limited manual pentesting and false positives from vulnerability scanners

The transformation of their cybersecurity programs with NodeZero, including 30% operations time savings, 95% reduction of third-party pentesting costs, and 65% reduction of vulnerability scanning costs

How the Forrester methodology was used to quantify $809K in benefits and a return of $1.63 in value for every dollar spent on NodeZero

Stephen Gates, Principal Security SME at Horizon3.ai and Art Ocain, CISO and Strategic Alliances Management at Airiam discuss:

– Why there is a growing demand for Managed Resiliency Services in todays’ enterprises.
– What Airiam does to help clients improve their business resiliency against cyberattacks.
– How NodeZero™ reduces vulnerabilities by ~50% across Airiam’s entire client base.

Low-Level Vulnerability Leads to Domain Compromise

Introduction On February 19, 2023, ConnectWise published a security advisory for their ScreenConnect remote management tool. In the advisory, they describe two vulnerabilities, an authentication bypass with CVSS 10.0 and a path traversal with CVSS 8.4 (both currently...

NodeZero APT: Azure Password Spray to Business Email Compromise

NextChat a.k.a ChatGPT-Next-Web, a popular Gen AI ChatBot, is vulnerable to a critical server-side request forgery (SSRF) vulnerability.

Businesswire 03/14/2023 Horizon3.ai, a leading cybersecurity firm specializing in autonomous penetration testing, today launched a major product refresh, doubling down on its commitment to help organizations continuously verify their security posture. Read the entire...

Businesswire 02/07/2023 Proactive Risk, a leading provider of technology risk management solutions, is excited to announce that it has joined the Horizon3.ai Partner Program as an Authorized Service Provider. Read the entire article here

Businesswire 02/02/2023 Horizon3.ai, a leading cybersecurity firm focused on autonomous penetration testing, today issued, “Year in Review 2022: Through the Eyes of the Attacker,” its inaugural edition of the cybersecurity threatscape. Read the entire article...

NodeZero identified those critical few vulnerabilities that are actually exploitable, allowing us to maximize increased security with minimum effort.

You’ll learn about:
The challenges these security teams hoped faced with costly, limited manual pentesting and false positives from vulnerability scanners

How the Forrester methodology was used to quantify $809K in benefits and a return of $1.63 in value for every dollar spent on NodeZero

Stephen Gates, Principal Security SME at Horizon3.ai and Art Ocain, CISO and Strategic Alliances Management at Airiam discuss:

Low-Level Vulnerability Leads to Domain Compromise

NodeZero APT: Azure Password Spray to Business Email Compromise

NextChat a.k.a ChatGPT-Next-Web, a popular Gen AI ChatBot, is vulnerable to a critical server-side request forgery (SSRF) vulnerability.

Introduction Our last blog post on the FortiClient EMS SQL injection vulnerability, CVE-2023-48788, as it turns out only worked on 7.0.x versions. This article will discuss the differences in exploitation between FortiClient EMS’s two mainline versions: 7.0.x and 7.2.x. When writing exploits for different versions of vulnerable software, the differences in the exploit are usually small, such as different offsets,...

In November of 2023, preparing for a call for papers, I attempted to investigate the FortiSIEM patch for CVE-2023-34992. I kindly inquired with the PSIRT if I could have access to the most recent versions to some of their appliances to validate the patches, to which they declined. Acquiring access a different way, I eventually was able to analyze the...

Use Case About NodeZero™ for Third-Party Risk Management

Business Wire 05/21/2024 Horizon3.ai, a leader in autonomous security solutions, is pleased to announce the appointments of Erick Dean as Vice President of Product Management and Drew Mullen as Vice President of Revenue Operations. These key executive hires underscore the management team Horizon3.ai continues to build, fueling significant growth. Read the entire article here

As enterprises continue to transition on-premises infrastructure and information systems to the cloud, hybrid cloud systems have emerged as a vital solution, balancing the benefits of both environments to optimize performance, scalability, and ease of change on users and administrators. However, there can be risks involved when connecting a misconfigured or ill-protected network to cloud services. Particularly, Microsoft Active Directory...

VSA Top Innovation Award 2024

Security Strategies

Industry Insights

Attack Research

Attack Content

Security Strategies

Industry Insights

Attack Research

Attack Content

Resource Center

Filters