Don’t Forget the Firmware
This past week Cisco discovered zero-day attacks being used in the wild against its Cisco IOS XR products. The last few months have shown a trend to keep network administrators busy outside of the new routine of work-from-home woes. Critical security...
System Filters
A couple of years ago, RiskSense provided a saved quick filter for a customer who was curious about a particular set of CVEs. RiskSense quickly realized the value in single-click system filters as they help clients understand the high severity...
Is Open Source Your Risk-Based Blind Spot?
Open source software has become an integral part of virtually every aspect of modern applications and application development. It’s currently estimated that open source code makes up between 80% and 90% of the code in modern applications. Likewise, open...
Blast from the Past! Working from home leads to uptick in Remote Access Vulnerability Trends
Back in May of 2019, one of the most trending and high-profile vulnerabilities of the decade, CVE-2019-0708 codenamed BlueKeep, was publicly disclosed. Then in August of 2019, BlueKeep received a second wave of hype when a second disclosure of similar...
While Zoom is in the News, Other Vendors are Also Plagued with Vulnerabilities
The first few months of 2020 had the world thrust apart because of COVID-19. In response, organizations and individuals alike turned to one technology more than any other: teleconferencing software. During the first three weeks of April 2020, Zoom saw a...
DHS Warnings Bring Light to Surging VPN Vulnerabilities
Since the start of 2020, virtual private networks (VPNs) have spiked in usage by 33% due to the flood of people forced to work from home. With this increase in VPN usage also comes a wave of new research into VPN vulnerabilities. One vulnerability,...
What You Don’t Know, Your RiskSense Penetration Tester Does
Knowing the Lay of Your Network Land As a Security Analyst, my job is to identify all possible hosts within a predefined scope of network ranges and assess them for vulnerabilities. I exploit my way through the network to acquire all appropriate access and...
Surging Remote Access Technology Vulnerabilities – See how they affect you
Since the beginning of the year, remote access technologies, such as remote desktop protocols and virtual private networks (VPNs), have spiked in usage by 41% and 33% respectively. Further, Zoom has seen roughly a 340% increase in Daily Active Users since...
Application Vulnerability Patterns
Introduction According to Imperva’s 2019 Cyberthreat Defense Report[1], a staggering 78% of organizations were affected by a successful cyberattack in the past year. Imperva also found that application development and testing is the biggest security...
Getting a Handle on Vulnerabilities in App and Web Frameworks
Web and application frameworks have revolutionized how modern applications and websites are developed and maintained. Whether using WordPress to quickly develop a blog or building fully dynamic web applications using Ruby on Rails, Angular JS, or Apache...
Featured Authors
Contact us at +1 505-217-9422
© 2020 RiskSense, Inc. All rights reserved.
Legal Notices, Privacy Policy, and Customer Agreements | Site Map