CyCognito Blog

Page 9 of 15
Company

CyCognito Achieves SOC 2 Type 2 Compliance

Alex-Zaslavsky
By Alex Zaslavsky
Was Sr. Product Manager at CyCognito
May 23, 2022

At CyCognito, our mission is to help organizations protect themselves from even the most sophisticated attackers. We can’t do that unless we ourselves maintain the highest standards of security. That’s why we’re pleased to announce that CyCognito has achieved SOC 2 Type 2 accreditation. 

Go to the Post


Products

CyCognito Operationalizes CISA Known Exploited Vulnerabilities Catalog

Jason-Pappalexis
By Jason Pappalexis
Sr. Technical Marketing Manager
May 20, 2022

“Bad news, early” is a common business mindset designed to communicate urgency behind the need to identify small problems before they become big problems. 

Go to the Post


Research

Big Problem with BIG-IP: Vulnerability Alert | CVE-2022-1388 in F5 BIG-IP

Emma-Zaballos
By Emma Zaballos
Product Marketing Manager
May 12, 2022

On May 4th, 2022, F5 announced their internal discovery of a remote code execution (RCE) vulnerability, CVE-2022-1388, that affects all firmware versions of their BIG-IP product.

Go to the Post


Research

One month in: CyCognito looks at Spring4Shell

Jason-Pappalexis
By Jason Pappalexis
Sr. Technical Marketing Manager
May 5, 2022

NIST assigned Spring4Shell a score of 9.8, most likely out of concern of a similar blast radius to Log4Shell, which was trivial to exploit and very common.

Go to the Post


Research

Detecting and Validating Spring4Shell Vulnerability: CVE-2022-22965

Alex-Zaslavsky
By Alex Zaslavsky
Was Sr. Product Manager at CyCognito
April 6, 2022

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the recently disclosed remote code execution (RCE) vulnerability affecting the Spring Framework, to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation.

Go to the Post


Perspectives

How to Get the Most out of Pen Tests

Phillip-Wylie
By Phillip Wylie
Was Hacker in Residence at CyCognito
March 30, 2022

Over the years, pen tests have increasingly become a mandated component of regulatory and compliance standards. The Payment Card Industry Data Security Standard (PCI DSS) requiring pentests be performed in card data environments (CDEs) grew this need for compliance-based pen testing. 

Go to the Post


Perspectives

The Great Resignation Isn’t Going Away. Here’s How to Retain Your Cybersecurity Employees.

Jim-Wachhaus
By Jim Wachhaus
Was Director of Technical Product Marketing at CyCognito
March 24, 2022

Despite the best efforts of automation and AI, we will always need people to prevent hackers from stealing data and wreaking havoc on computer networks essential for most businesses today. In essence, a domino effect over the last two years of Covid-19 has led to the “Great Resignation” and the “Great Retirement.”

Go to the Post


Perspectives

Empowering Security Operations To Know Which Risks to Remediate First

Dima-Potekhin
By Dima Potekhin
CTO and Co-Founder
March 17, 2022

Exploit Intelligence offers an end-to-end solution that prioritizes which risks to remediate immediately, before they are exploited, by proactively discovering external assets, testing vulnerabilities, and providing expert threat- plus risk-based insight.

Go to the Post


Featured, Perspectives

Exploit Intelligence: It’s Not Just for Offensive Security Pros Anymore

Phillip-Wylie
By Phillip Wylie
Was Hacker in Residence at CyCognito
March 16, 2022

Equipping defenders with exploit intelligence is a way CyCognito helps defenders learn the offensive security side of things. 

Go to the Post


Products

Identifying and Mitigating Potential Russian Cyber Attacks – Proactive Measures in the CyCognito Platform

Jeff-Romano
By Jeff Romano
Was Chief Customer Officer at CyCognito
March 3, 2022

Effective immediately, the CyCognito platform is able to help identify and mitigate the gaps used by Russian state-sponsored threat actors.

Go to the Post


Older PostsNewer Posts

Topics


Search the Blog



Featured Posts

Emma Zaballos
A New Framework: Understanding Exposure Management 
By Emma Zaballos
November 11, 2024
Jason Pappalexis
Six Signs that Exposure Management is Right for Your Organization
By Jason Pappalexis
October 14, 2024
Jason Pappalexis
Think your attack surface is covered? Let’s look at the math.
By Jason Pappalexis
September 30, 2024
Emma Zaballos
Defensive Playbook: Understanding New Trends in External Risk with CyCognito’s State of External Exposure Management Report
By Emma Zaballos
September 23, 2024
Graham Rance
Web Application Security Testing: Struggles, Shortfalls and Solutions
By Graham Rance
June 3, 2024


Top Tags


Stay informed

Subscribe to the Blog

Subscribe now to get the latest insights delivered straight to your inbox.

CyCognito Research Report

State of External Exposure Management, Summer 2024 Edition

State of External Exposure Management, Summer 2024 Edition

Download the report now to stay ahead of emerging threats and strengthen your organization’s security posture for 2024.
O'Reilly Report

Moving from Vulnerability Management to Exposure Management

Moving from Vulnerability Management to Exposure Management

Download the report to learn about the historical trends behind the emergence of exposure management, how to develop a strategic plan and assemble a team to smoothly transition frameworks, and example tech stacks to consider for your organization.
Request a Free Scan

See Exactly What Attackers See

Get a Free Scan of Your Attack Surface

Get a free scan of your attack surface and gain valuable insight into your organization's risk posture by allowing CyCognito to discover, contextualize, and test externally exposed assets on a portion of your parent company or a single subsidiary.

Request a Scan