Attack Path vs Attack Vector: Important Differences You Need To Know
If you want to solve a problem, defining your terms is essential — and there are few more pressing problems than safeguarding critical assets…
Top 3 Benefits of Ransomware Readiness Assessment
After so many recent high-profile ransomware attacks, CISOs, SOC Managers and other cybersecurity leaders are certainly aware of the risks involved. Global costs from…
Time to go beyond Log4Shell and see the entire attack path
Today’s organizations are overwhelmed since the world first learned about the Log4Shell vulnerability (aka Log4J CVE-2021-44228, CVE-2021-45046). If prioritizing your vulnerabilities was a daunting…
XM Cyber Advisory – Log4Shell, CVE-2021-44228
Overview Last Thursday, December 9, the Log4Shell vulnerability, CVE-2021-44228 (CVSS score 10), was discovered. This remote code execution (RCE) vulnerability was being exploited in…
XMGoat – An Open Source Pentesting Tool for Azure
Overview We created XMGoat as an open source tool with the purpose of teaching penetration testers, red teamers, security consultants, and cloud experts…
Reinforce AWS Security with Continuous and Automated Mitigation of Hybrid Cyber Risk
It’s No Secret Migrating to and maintaining a hybrid cloud environment continues to be challenging from a cybersecurity point of view. New security gaps…
5 Best Practices for Attack Surface Management
In recent years, the concept of attack surface management has begun to gain traction. When executed correctly, it can dramatically strengthen your security posture and…
Getting Started with the Risk-based Vulnerability Management Approach
Managing cybersecurity vulnerabilities is enough to make anyone feel under siege. In recent years there have been anywhere from 30-40 new vulnerabilities released daily,…
XM Cyber Presents: A Cloud Security Masterclass
REGISTER NOW The world is moving at an incredible pace to keep up with the speed of business. 90% of enterprises will be leveraging…
Follow These AWS Security Best Practices to Secure Your Cloud Environment
Cloud platforms such as Amazon Web Services (AWS) have transformed how we do business. They allow organizations access to highly scalable and flexible computing…
Why Smart Attack Path Management is the Key to Better Cybersecurity
You can’t understand modern cybersecurity without a good grasp of attack paths. With that said, let’s take a closer look at why attack paths…
Hybrid Cloud Security Best Practices: Secure the Multi-cloud Environment
Hybrid cloud computing is a “best of both worlds” approach made up of on-premises infrastructure, private cloud services, and a public cloud – such…
Find and fix the exposures that put your critical assets at risk with ultra-efficient remediation.