Blog
Identity-based attacks that utilize compromised credentials to access enterprise resources are a blind spot for organizations’ security stacks. As a result, identity-based attacks are rising as the leading cause in…
Ransomware has gradually evolved since it was first introduced in 2005. In 2013, ransomware attacks began to target the enterprise workforce rather than personal users, with more than 100k new…
The PetitPotam attack, published on GitHub, causes a remote server to authenticate to a target server with NTLM, using an MS-EFSRPC command called EfsRpcOpenFileRaw. MS-EFSRPC is a protocol that enables remote…
A vulnerability in Windows Print Spooler could allow for remote code execution as “System” by authenticated domain users on Windows systems. Details and proof-of-concept for the vulnerability have been leaked…
Ransomware attacks rank high among enterprises’ cybersecurity concerns. The common practice today is to protect against the delivery and execution stages of these attacks. However, nearly all enterprises lack the…
Zero Trust has become a top initiative for enterprise security stakeholders. The concept is simple and intuitive: implicit trust is by itself a vulnerability which threat actors can exploit for…
The recent Executive Order, signed by President Biden in May 2021, is a response to a series of high-profile cyberattacks on targets such as SolarWinds, Microsoft Exchange, and most recently,…