Your source for exposure management research, product news, and security insights.
Two security issues affecting the popular Ivanti Connect Secure and Ivanti Policy Secure remote access SSL VPN systems can be chained together to give unauthenticated attackers remote access to critical systems. CyCognito’s active testing protects our current customers and delivers key insights about these vulnerabilities in the CyCognito platform.
Read more about Emerging Security Issue: Ivanti Vulnerabilities CVE-2023-46805 and CVE-2024-21887Axonius and CyCognito, working together, provide a broad picture of risk based on internal and external intelligence allowing mutual customers to efficiently prioritize threats based on their potential for real-world exposure.
Read more about 360 Degree Threat Exposure Management with CyCognito and AxoniusSecurity testing externally exposed assets is essential to building a risk profile but is difficult using legacy approaches.
Read more about No Room for Doubt – Why Security Testing is Essential for your External Attack SurfaceAn accurate external asset inventory forms the foundation for reduced exposure and risk. CyCognito’s unique approach to organizational reconnaissance, asset discovery, and contextualization provides IT Security teams with meaningful information that reduces time to remediation.
Read more about Discovery: Don’t Let the Wrong Definition Impact Your Risk ExposureCyber Monday is right around the corner and millions of consumers will flock to ecommerce websites in search of the best deals. But can shoppers be assured that the sites they do business with are secure and compliant? Before and during the holiday shopping season, retailers need to ensure that ecommerce websites with missing WAFs, cryptographic vulnerabilities, or easily exploited critical issues.
Read more about This Holiday Shopping Season, Your Attack Surface is Open for BusinessGenerative AI is a form of artificial intelligence that generates new content –including text, images, and video – in response to user prompts. These AI models are trained on huge volumes of data and use algorithms to create content that has a similar structure to their training data
Read more about No Room for Error: Experiments with Generative AI in EASMCyCognito Attack Surface Management (ASM) now offers the ability to discover APIs on an organization’s attack surface. Given the proliferation of APIs and their attractiveness to attackers, this capability is an important new tool for security teams. This post describes the issue and how CyCognito ASM solves it.
Read more about API Detection with CyCognitoAchieving compliance for any sized organization is often time-consuming and stressful, forcing many security teams to divert their attention away from the tasks at hand. The value (and necessity) of achieving a successful audit efficiently cannot be understated, but the challenges are real. Using CyCognito to discover and test externally exposed assets and dynamically map issues to compliance frameworks provides the continuous visibility needed to streamline their work.
Read more about Navigating Compliance Challenges Across Your External Attack SurfaceContinuous threat exposure management (CTEM) is a risk reduction strategy introduced by Gartner in 2021. Designed to significantly reduce mean time to remediation (MTTR), it relies on coordination of people, processes and technology. Choosing the right CTEM technology is critical to efficient implementation.
Read more about Continuous Threat Exposure Management – Your Path to Reduced External Cyber Security RiskExplore the complexities of manual pen testing and red teaming. How can you leverage automated pen testing solutions to optimize your team’s process?
Read more about Automated Pen Testing for Efficient Red Teaming
