CATEGORY: ATTACK SURFACE MANAGEMENT

  • Three pillars supporting a gray triangular structure that reads, 'Three Pillars for Building a Successful MSSP', with the Ionix logo above. Each pillar is colored differently: yellow, blue, and pink.
    Gilad Friedman
    December 19, 2024

    Three Pillars for MSSP Success in EASM

  • Alert: Zero-day vulnerability update for Kerio Control. CVE-2024-52875: Exploited HTTP response splitting vulnerability.
    Fara Hain
    December 18, 2024

    Exploited! Kerio Control’s HTTP Response Splitting Vulnerability (CVE-2024-52875)

  • Mitel MiCollab NVM CVE
    Nethanel Gelernter
    December 5, 2024

    Exploited! NuPoint Unified Messaging (NPM) Component of Mitel MiCollab

  • Alert: Zero-day vulnerability update for PAN-OS (CVE-2024-0012), an authentication bypass.
    Nethanel Gelernter
    November 20, 2024

    Exploitable! CVE-2024-0012 Authentication Bypass for PAN-OS

  • Security alert: Zero-day vulnerability update for CVE-2024-10924 affecting millions of WordPress sites due to a security plugin flaw.
    Nethanel Gelernter
    November 19, 2024

    CVE-2024-10924 Explained: Security plugin flaw in millions of WordPress sites

  • Graphic of the Ionix Cloud Exposure Validator. The graphic features a blue box with the title and a thumbs up.
    Amit Sheps
    November 19, 2024

    IONIX Launches Cloud Exposure Validator: Bringing CTEM to Cloud Security

  • Ionix graphic illustrating third party vendor cybersecurity risks with the title "Understanding Third-Party Vendor Cybersecurity Risks" and three red circles connected by a blue triangle.
    Amit Sheps
    November 17, 2024

    Third-Party Security Risks: The Complete Guide

  • Ionix Security Alert: Zero-Day Vulnerability Update addressing Citrix Session Recording vulnerabilities CVE-2024-8068 and CVE-2024-8069.
    Nethanel Gelernter
    November 13, 2024

    CVE-2024-8068 and CVE-2024-8069: Citrix Session Recording Vulnerability

  • Security alert: Zero-day vulnerability update (CVE-2024-50340) for Symfony Profiler, allowing remote access via injected arguments.
    Nethanel Gelernter
    November 12, 2024

    Understanding CVE-2024-50340 – Remote Access to Symfony Profiler

  • Illustration of a computer screen displaying the text "WEB APP SECURITY: COMMON THREATS AND BEST PRACTICES" in red against a white background. The computer is set against a gradient background of purple and pink.
    Amit Sheps
    November 6, 2024

    Web Application Security: From Business Risk to Technical Defense

  • RCE CyberPanel
    Nethanel Gelernter
    October 29, 2024

    CVE-2024-51567 Code Execution Vulnerability in CyberPanel

  • Ionix graphic with the title: Attack Surface Analysis and Mapping: Process and Best Practices
    Amit Sheps
    October 14, 2024

    Attack Surface Analysis and Mapping Step By Step