Managing the Financial Industry’s Attack Surface
The financial services industry has always been at the forefront of technology adoption, but the 2020 pandemic accelerated the widespread use of mobil...

Tackling Cloud Security Challenges

As much as we love the cloud, we fear it as well. We love it because cloud computing services of Amazon, Azure, and Google have transformed operati...

Next-Gen Cloud Security Solutions

Cloud computing has fundamentally changed how we operate. It's efficient and scalable, but it's not without some problems. Security is the biggest. As...

Protecting Against Ivanti Zero-Day Vulnerabilities

Ivanti Ground Zero On January 10, 2024, Ivanti disclosed two vulnerabilities, CVE-2023-46805 and CVE-2024-21887, impacting its Ivanti Connect Secur...

4 Steps to Knowing Your Exploitable Attack Surface

According to a Cisco CISO Benchmark survey, 17% of organizations had 100,000 or more daily security alerts in 2020, a number that has only increased...

Cyber Attack Lessons 2024: Key Takeaways for Security Teams

The State of Cyber Attacks in 2024 Cyber threats have escalated in 2024, forcing security teams to analyze cyber attack lessons from 2024 to improv...
2024 State of Pentesting Survey
Download

How to attack and protect WebLogic server

WebLogic is a popular enterprise middleware tool that orchestrates the interaction between backend systems and frontend clients. This makes it a val...

Embracing a Hacker Mindset for Better Cyber Defense

Today's security leaders must manage a constantly evolving attack surface and a dynamic threat environment due to interconnected devices, cloud serv...

Business Risk as a Guide for Cybersecurity Remediation

We all know the culprits. Cloud adoption, remote and hybrid work arrangements and a long list of must-have technologies have led to an ever-expandin...
Begin your security validation journey
Request a demo
Book your demo now >
Managing Legacy Infrastructure for Security
Every company has some level of tech debt. Unless you’re a brand new start-up, you most likely  have a patchwork of solutions that have been impleme...

Risks of LOLBAS in Security

Living Off the Land Binaries and Scripts (LOLBAS) represent a stealthy and growing threat in cybersecurity. By using trusted system utilities for ma...

Securing Neglected Network Protocols

The rapid pace of technological advancements constantly create new attack vectors and attack surfaces. Consequently, it is critical to constantly st...

Penetration Testing Trends: A 2023 Perspective

Penetration testing trends are more critical than ever. In the past 24 months, over 88% of organizations have been breached. Nearly nine out of ten ...
Finding MSSQL Database Version with TDS Protocol
The version of an MSSQL database provides valuable information that cyber attackers can exploit. With the version details in hand, they can attempt ...

Reducing Exposure on the Manufacturing Attack Surface

Digitalization initiatives are connecting once-isolated Operational Technology (OT) environments with their Information Technology (IT) counterparts...

Proactive and Preventative Security Measures

Despite major investments in their security suites, organizations continue to be breached. Our Co-founder and CTO, Arik Liberzon, recently sat down ...

Securing MongoDB with Data-at-Rest Encryption

In this post, we will examine one method of encrypting data-at-rest, specifically how to achieve Data-at-Rest Encryption for MongoDB Community Editi...
The Buyer's Guide to Security Validation
Download

Best Practices for Migrating from CentOS to Ubuntu

After CentOS 8 was declared end-of-life (EOL), we had to plan a CentOS to Ubuntu migration as an alternative operating system (OS) for our on-premis...