Recent Posts Archives - Page 7 of 15

Attack Surface Management: How 2022 Will Be the Year of ASM

February 22, 2022

Having a clear view of which assets are exposed and the risk they pose has long been recognized as foundational to an effective security program

5 Cybersecurity Themes to Carry Forward into 2022

February 18, 2022

We learned a lot in 2021. Headline-making breaches like Log4j, Colonial Pipeline, JBS Meatpacking and Kaseya each taught us something about what our security systems can

It Takes A Hacker — How to Build a Red Team

February 14, 2022

Leaders in cyber defense recognize the importance of red team activities to continually improve the effectiveness of their security programs. Building a red team that

FTC Cracks Down on Log4j

January 25, 2022

In a recent blog, the Federal Trade Commission (FTC) sent a shot across the bow of financial services firms. In it, they warned firms that

5 Cybersecurity Questions 2021 Threw Our Way

January 13, 2022

2021 was a bummer for the cybersecurity community. We witnessed multiple large-scale cyber attacks, each of which did a number on the industry’s collective psyche.

Reflections on 2021 in Cybersecurity

January 4, 2022

Our community has been plagued with quite a few breaches last year: Kaysea, JBS Meatpacking, Colonial Pipeline, Park Mobile and most recently, Log4j. These have

Using Randori Recon to Understand Your Log4j Exposure

December 15, 2021

This is an evolving situation. If you need to understand your exposure, please reach out in the chat below or click here to see if

CVE-2021-44228 – Log4j 2 Vulnerability Analysis

December 10, 2021

Last Update: 4:13pm EST, Dec. 14, 2021 (List of updates at bottom) What is Log4Shell? Log4Shell is a high severity vulnerability (CVE-2021-44228, CVSSv3 10.0) impacting

Cybermetrics – Using ASM to Play the Shift

November 22, 2021

Cybersecurity strategy can learn from baseball and stack defensive resources where they matter most If you’ve flipped on a Tampa Bay Rays baseball game over

Zero-Day Disclosure: Palo Alto Networks GlobalProtect VPN CVE-2021-3064

November 10, 2021

Overview: CVE-2021-3064 On November 10, 2021 Palo Alto Networks (PAN) provided an update that patched CVE-2021-3064 which was discovered and disclosed by Randori. This vulnerability

Why Zero-Days Are Essential to Security

November 10, 2021

At Randori, we believe experience is the best defense — and we’re not alone. Successful security programs have long assumed compromise and invested heavily in

How RDP Protection Could Have Prevented A Ransomware Attack

November 2, 2021

Anatomy of a Breach RDP (Remote Desktop Protocol) is a Microsoft protocol that allows users to remotely access remote computers. A great deal of enterprise

Randori Blog

Recent Posts: