Research

• Research

Apache Log4j | Are you vulnerable?

By Jim Wachhaus ・ December 12, 2021

The log4j vulnerability affects code across the world. Learn how to protect your organization with the CyCognito Platform today.

Read more about Apache Log4j | Are you vulnerable?

• Research

Top Attack Vectors and How to Prevent Them

By Sam Curcuruto ・ November 18, 2021

Attack vectors are the path an attacker uses to gain access to your organization’s network. Find out more about the top attack vectors and learn to steer clear of them.

Read more about Top Attack Vectors and How to Prevent Them

• Research

Vulnerability Notice: Patch CVE-2021-31166

By Alex Zaslavsky ・ May 21, 2021

New Vulnerability Patch. Check your IIS servers and make sure that for those newer Windows 10 servers affected that CVE-2021-31166 has been patched.

Read more about Vulnerability Notice: Patch CVE-2021-31166

• Research

Colonial Pipeline Highlights Weaknesses in Global Supply Chain

By Jim Wachhaus ・ May 12, 2021

All organizations such as Colonial Pipeline are under threat of ransomware. These attack vectors arise because they lack attack surface visibility.

Read more about Colonial Pipeline Highlights Weaknesses in Global Supply Chain

• Research

Research Results: The Challenges With Pen Testing for Cybersecurity

By Raphael Reich ・ May 5, 2021

Does pen testing still make sense in an era of digital transformation where companies are reinventing themselves to be digital-first businesses?

Read more about Research Results: The Challenges With Pen Testing for Cybersecurity

• Research

Why On-Going Supply Chain Attacks Set Up an Awful Game of Telephone

By Jim Wachhaus ・ April 1, 2021

With the Accellion breach not all disclosures were public or full or timely. Learn why this is a bigger problem than this one supply chain attack.

Read more about Why On-Going Supply Chain Attacks Set Up an Awful Game of Telephone

• Research

Lessons Learned from Microsoft Exchange Zero-Days

By Jim Wachhaus ・ March 16, 2021

Microsoft Exchange Vulnerabilities – a perfect example why using old technology impacts your security posture today.

Read more about Lessons Learned from Microsoft Exchange Zero-Days

• Research

SUNBURST exposes supply chain security risks

By Raphael Reich ・ December 29, 2020

The SolarWinds attack (SUNBURST) demonstrates that hackers will find weakness in your extended IT ecosystem that you simply just don’t know about.

Read more about SUNBURST exposes supply chain security risks

• Research

CyCognito Platform Detects Four Zero-Day Vulnerabilities

By Alex Zaslavsky ・ July 2, 2020

Learn how the CyCognito platform proactively identifies XSS vulnerabilities and other attack vectors before attackers exploit them.

Read more about CyCognito Platform Detects Four Zero-Day Vulnerabilities

• Research

Cybersecurity Research: Latest Security Risk Trends and Data

By Alex Zaslavsky ・ November 19, 2019

Cybersecurity analytics data show that security teams are blind to 75% of their attacker-exposed assets – entry points not found by vulnerability scanners.

Read more about Cybersecurity Research: Latest Security Risk Trends and Data