Thank you for signing up!
Looking for More Horizon3.ai Content?
Red Team Blog
CVE-2023-27524: Insecure Default Configuration in Apache Superset Leads to Remote Code Execution
Apache Superset is an open source data visualization and exploration tool. It has over 50K stars on GitHub, and there are more than 3000 instances of it exposed to the Internet. In our research, we found that a substantial portion of these servers - at least 2000...
Customer Success Blog
CISA’s Ransomware Vulnerability Awareness Pilot: But Is It Enough?
In early 2023, CISA launched their Ransomware Vulnerability Awareness Pilot (RVWP). It’s designed to warn critical infrastructure (CI) entities that their systems have exposed vulnerabilities that may be exploited by ransomware threat actors. The plan is to identify affected systems that may be prevalent in CI networks, then notify operators about potential risk of exploitation. The idea behind this is to enable timely mitigation measures before the damage is done in the context of ransomware attacks.