Clik here to view.
Writeup for CVE-2023-43208: NextGen Mirth Connect Pre-Auth RCE
Introduction In Oct. 2023, we released an advisory for CVE-2023-43208, a pre-authenticated remote code execution vulnerability affecting NextGen Mirth Connect. Mirth Connect is an open source data...
View ArticleClik here to view.
Understanding the Actively-Exploited Ivanti CVE’s
What is this all about? Two recent Ivanti CVEs are being actively exploited by suspected nation-state threat actors. The CVEs are as follows: CVE-2024-21887: A command injection vulnerability in web...
View ArticleSecuring the Move: Cyber Resilience in the Transportation and Supply Chain...
How a Prevailing Transportation Company Modernized Security with NodeZero Cyber protection is crucial for the transportation industry and the supply chain because it ensures the seamless flow of goods,...
View ArticleClik here to view.
CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass Deep-Dive
On January 22, 2024 Fortra posted a security advisory for their GoAnywhere MFT product. This advisory details an authentication bypass vulnerability, CVE-2024-0204, that allows an unauthenticated...
View ArticleClik here to view.
NodeZero Updated With Attack Content for Critical Confluence RCE
On 16 January, Atlassian released a security advisory concerning CVE-2023-22527 that affects vulnerable out-of-date versions of Confluence Data Center and Server. Both Confluence Data Center and Server...
View ArticleShifting the Focus to Exploitability in CTEM and ASM
The Exploitable Attack Surface Keeps Expanding: Discover and Remediate Exploitable Vulnerabilities with NodeZero The post Shifting the Focus to Exploitability in CTEM and ASM appeared first on...
View ArticleClik here to view.
CVE-2024-0204: Check Critical Fortra GoAnywhere MFT Authentication Bypass...
On 22 January, Fortra issued an advisory stating that versions of its GoAnywhere Managed File Transfer (MFT) product suffer from an authentication bypass vulnerability. GoAnywhere MFT is, as the name...
View ArticleClik here to view.
CVE-2024-23897: Assessing the Impact of the Jenkins Arbitrary File Leak...
Last Wednesday, on January 24, 2024, the Jenkins team issued a security advisory disclosing a critical vulnerability, CVE-2024-23897, affecting the Jenkins CI/CD tool. This advisory set off alarm bells...
View ArticleClik here to view.
CVE-2024-23897: Check Critical Jenkins Arbitrary File Leak Vulnerability Now!
On 24 January 2024, the Jenkins team issued a security advisory disclosing a critical vulnerability that affects the Jenkins CI/CD tool. Jenkins is a Java-based open-source automation server run by...
View ArticleGone Phishing: How an Intern’s Credentials can be a Gateway to Your Crown Jewels
“Who cares that the intern was phished during our phishing campaign? It’s an intern, they don’t have access to anything important.” As a security practitioner, that mindset among business leaders drove...
View ArticleClik here to view.
CVE-2024-21893: Another Ivanti Vulnerability Exploited in the Wild. Verify...
On 22 January, Ivanti published an advisory stating that they discovered two new, high-severity vulnerabilities (CVE-2024-21888 and CVE-2024-21893) after researching previously reported vulnerabilities...
View ArticleClik here to view.
Rust Won’t Save Us: An Analysis of 2023’s Known Exploited Vulnerabilities
Introduction Memory safety issues have plagued the software industry for decades. The Cybersecurity & Infrastructure Security Agency (CISA) has been leading a charge for secure-by-design and...
View ArticleClik here to view.
NodeZero APT: Azure Password Spray Leads to Business Email Compromise
On January 19, 2024, Microsoft disclosed a major security incident in which the email of Microsoft senior executives and other staff were accessed by Midnight Blizzard a.k.a Cozy Bear, a nation-state...
View ArticleHorizon3.ai Unveils Phishing Impact Testing to Help Organizations Understand...
Business Wire 02/07/2024 Horizon3.ai, a pioneer in autonomous security solutions, today announced the launch of its first-to-market Phishing Impact test capability within NodeZero™. This new capability...
View ArticleIntroducing the NodeZero Phishing Impact Test
Horizon3.ai introduces a groundbreaking test type in its NodeZeroTM platform: the Phishing Impact test. It delivers tangible insights into the potential consequences of phishing attacks on your...
View ArticleClik here to view.
ConnectWise ScreenConnect: Authentication Bypass Deep Dive
Introduction On February 19, 2023, ConnectWise published a security advisory for their ScreenConnect remote management tool. In the advisory, they describe two vulnerabilities, an authentication bypass...
View ArticleWhat’s the true impact on your organization when an employee is phished?
You can now fully assess the impact of phished credentials on your organization. Tune into this webinar to watch the NodeZero platform evaluating the blast radius of every phished credential as it...
View ArticleHorizon3.ai Unveils Pentesting Services for Compliance Ahead of PCI DSS v4.0...
Business Wire 03/05/2024 Horizon3.ai, a pioneer in autonomous security solutions, today announced the availability of the Horizon3.ai Pentesting Services for Compliance. Horizon3.ai recognizes that...
View ArticleClik here to view.
CVE-2024-1403: Progress OpenEdge Authentication Bypass Deep-Dive
On February 27, 2024, Progress released a security advisory for OpenEdge, their application development and deployment platform suite. The advisory details that there exists an authentication bypass...
View ArticleClik here to view.
NextChat: An AI Chatbot That Lets You Talk to Anyone You Want To
With the advent of generative AI, AI chatbots are everywhere. While users can chat with large-langage models (LLMs) using a SaaS provider like OpenAI, there are lots of standalone chatbot applications...
View Article