Resources

CVE-2023-46604 – Remote Code Execution (RCE) Flaw in Apache ActiveMQ
XM Cyber Research |

On Oct 27th, open-source web server software provider Apache disclosed a new vulnerability with a CVSS score of 10, which is currently being tracked…

One Top-Tier Automotive Giant, Two Dangerous Attack Paths
Felix Weber | November 16, 2023

It likely comes as no great surprise – cybersecurity is a paramount concern in the automotive industry.  For all of the same reasons it’s…

XM Cyber on Operationalizing The Continuous Threat Exposure Management (CTEM) Framework by Gartner®

If you spend your working time in the vulnerability and exposure management space, chances are you’ve heard about the Continuous Threat Exposure Management framework…

The TIBER-EU Framework: Here’s What You Need to Know
Batya Steinherz | November 09, 2023

Compliance frameworks aren’t always the most fascinating of topics, but they are always important topics. Today we’re looking at TIBER-EU (Threat Intelligence-Based Ethical Red…

Now That Cyber Awareness Month is Over, Don’t Forget These Tips and Best Practices
XM Cyber | November 02, 2023

When it comes to cyber awareness, a lot of professionals (you, perhaps?) may assume that being “in the know” means there’s nothing left to…

Top Attack Paths in AWS and How to Efficiently Remediate Exposure

As organizations move workloads to the cloud, new and complex attack paths emerge across the hybrid cloud environment. Knowing which risks to fix without…

Gartner Trends: In 2024, CTEM is Top Priority for Enterprises
Batya Steinherz | October 31, 2023

Well, it’s almost the end of the year and you know what that means?  It’s time for all the predictions/wrap up/upcoming trends blogs and…

Four Real-Life Financial Service Attacks Paths
Ian Gallagher | October 19, 2023

Back in the wild west, there was this guy, Willie Sutton. Willie’s chosen profession wasn’t the town dentist-barber or saloon owner. Nope, he was…

New Name, Same Risks: Two Microsoft Entra ID Attack Paths
Zur Ulianitzky and Bill Ben Haim | October 04, 2023

For those not yet aware, Microsoft Entra ID is the new name for Azure AD, just announced this July. By way of brief history,…

Pentesting, Red Teaming, BAS tools, RBVM, Exposure Management – The Many Options for Addressing Exposures
Mark Jaffe | September 28, 2023

Pentesting, Red Teaming, Breach and Attack Simulation, RBVM, Exposure Management – Oh My! Your Guide to the MANY Options for Addressing Exposures Here’s a…

Exposures, Exposed! Weekly Round-up September 17-22
XM Cyber | September 26, 2023

Welcome back to Exposures, Exposed!, XM Cyber’s weekly round-up of exposure news you can use. We scour the cyber universe to bring you the…

What is Exposure Management?

Exposure management is a process by which organizations identify, evaluate and mitigate risks that dramatically impact operational resilience, financial stability and even business continuity….

1 6 7 8 9 10 38

Find and fix the exposures that put your critical assets at risk with ultra-efficient remediation.

See what attackers see, so you can stop them from doing what attackers do.