Time to go beyond Log4Shell and see the entire attack path
Today’s organizations are overwhelmed since the world first learned about the Log4Shell vulnerability (aka Log4J CVE-2021-44228, CVE-2021-45046). If prioritizing your vulnerabilities was a daunting…
XM Cyber Advisory – Log4Shell, CVE-2021-44228
Overview Last Thursday, December 9, the Log4Shell vulnerability, CVE-2021-44228 (CVSS score 10), was discovered. This remote code execution (RCE) vulnerability was being exploited in…
XMGoat – An Open Source Pentesting Tool for Azure
Overview We created XMGoat as an open source tool with the purpose of teaching penetration testers, red teamers, security consultants, and cloud experts…
Reinforce AWS Security with Continuous and Automated Mitigation of Hybrid Cyber Risk
It’s No Secret Migrating to and maintaining a hybrid cloud environment continues to be challenging from a cybersecurity point of view. New security gaps…
5 Best Practices for Attack Surface Management
In recent years, the concept of attack surface management has begun to gain traction. When executed correctly, it can dramatically strengthen your security posture and…
Getting Started with the Risk-based Vulnerability Management Approach
Managing cybersecurity vulnerabilities is enough to make anyone feel under siege. In recent years there have been anywhere from 30-40 new vulnerabilities released daily,…
XM Cyber Presents: A Cloud Security Masterclass
REGISTER NOW The world is moving at an incredible pace to keep up with the speed of business. 90% of enterprises will be leveraging…
Follow These AWS Security Best Practices to Secure Your Cloud Environment
Cloud platforms such as Amazon Web Services (AWS) have transformed how we do business. They allow organizations access to highly scalable and flexible computing…
Why Smart Attack Path Management is the Key to Better Cybersecurity
You can’t understand modern cybersecurity without a good grasp of attack paths. With that said, let’s take a closer look at why attack paths…
Hybrid Cloud Security Best Practices: Secure the Multi-cloud Environment
Hybrid cloud computing is a “best of both worlds” approach made up of on-premises infrastructure, private cloud services, and a public cloud – such…
What You Need to Know About Prioritizing Vulnerabilities
Sisyphus, a famous king from Greek mythology, was known for being crafty. He cleverly used deceit and trickery to twice cheat death. Zeus and…
The Odds Say Your Company Will Be a Ransomware Victim This Year. Here’s How XM Cyber Helps Flip the Odds in Your Favor
Here’s something that should send a shiver down the spine of cybersecurity professionals and business leaders: The odds say that your organization will be…
Find and fix the exposures that put your critical assets at risk with ultra-efficient remediation.