Security Practitioner
Filter Content:
Categories:
Tags:
October 18, 2021 | Attack Blogs
We wanted to do something a little bit different with this post. Our vulnerability disclosures, exploit proof-of-concepts, and attack analysis…
October 16, 2021 | Whitepapers
While so many are focused on vulnerabilities and malware on endpoints, understanding the attack paths an attacker would exploit to…
October 4, 2021 | Attack Blogs
Overview A common attack path that Horizon3 has identified across many of its customers is abusing access to the VMware…
September 16, 2021 | Attack Blogs
Overview On September 14, multiple vulnerabilities were discovered by researchers at Wiz.io. The most critical of them being CVE-2021-38647, now dubbed…
September 13, 2021 | Attack Blogs
On August 25, 2021, Atlassian released a security advisory for CVE-2021-26084, an OGNL injection vulnerability found within a component of Confluence Server…
September 4, 2021 | Attack Blogs
In August, Orange Tsai released details and also spoke at BlackHat and DEFCON detailing his security research into Microsoft Exchange. His latest blog post…
March 30, 2021 | Video
In the world of network security, compliance is the bare minimum. Compliance is locking your door, but what about your…March 8, 2021 | Disclosures
Zabbix is an enterprise IT network and application monitoring solution. In a routine review of its source code, we discovered…
February 24, 2021 | Attack Blogs
Write the file supplied in the --file argument to the location specified in the --path argument. The file will be…February 7, 2021 | Disclosures
LibreNMS is an open source solution for network monitoring based on PHP, MySQL and SNMP. While reviewing its source code,…