See what we're thinking about, working on, & blogging about.

Explore the latest insights, ideas, & opinions from our talented team of experts & researchers.

They're in…now what? How to stop lateral movement when the phish bites Product

By focusing on proactively remediating common, exploitable internal exposures, you fundamentally change the game. Learn how with the runZero Platform.

Subscribe Now

Get our latest Rapid Responses, insights, and blogs delivered directly to your inbox.

Welcome to the club! Your subscription to our newsletter is successful.

Rapid Response
How to find VMware Aria installations on your network
September 30, 2025
VMware has disclosed a local privilege escalation vulnerability in its VMware Aria Operations and VMware Tools. Here's how to find impacted assets.
Rapid Response
How to find Cisco IOS & IOS-XE devices
September 29, 2025
Cisco has disclosed a vulnerability, CVE-2025-20352, in its IOS and IOS-XE software. Here's how to find affected assets with runZero.
Rapid Response
How to find Fortra GoAnywhere MFT installations
September 29, 2025
Fortra has disclosed a deserialization of untrusted data vulnerability in the license servlet of its GoAnywhere Managed File Transfer (MFT).
Rapid Response
How to find Plex Media Server installations on your network
September 29, 2025
Plex released a security update for a currently undisclosed vulnerability in certain versions of Plex Media Server.
Rapid Response
How to find Trend Micro Apex One installations on your network
September 29, 2025
Trend Micro has disclosed two OS command injection vulnerabilities in certain versions of its Apex One Management Console (on-premises).
Rapid Response
How to find N-able N-central installations on your network
September 29, 2025
N-able has disclosed two actively exploited vulnerabilities in certain versions of N-central. Here's how to find affected assets with runZero.
Rapid Response
How to find Fortinet assets on your network
September 29, 2025
In August 2025, Fortinet disclosed vulnerabilities in certain versions of their FortiWeb and FortiSIEM and products. Here's how to find impacted...
runZero Research
Fast ≠ careless: cutting exposure time without breaking things
September 26, 2025
This month’s runZero Hour wasn’t just another CVE rundown. We went deeper to uncover what it means to move fast without breaking things.
Rapid Response
How to find Cisco firewalls on your network
September 25, 2025
Cisco has disclosed three vulnerabilities on certain versions of Cisco Secure Firewall ASA and Cisco Secure FTD software.
runZero Research
Grappling with a post-CVE world
September 25, 2025
The writing is on the wall: an over-reliance on CVEs and agent-based approaches won’t keep you safe. So what else can you do to regain the upper hand?
Rapid Response
How to find SolarWinds Web Help Desk services on your network
September 23, 2025
SolarWinds has disclosed a deserialization of untrusted data vulnerability in the AjaxProxy component of its Web Help Desk (WHD).
Rapid Response
How to find WatchGuard Firebox appliances on your network
September 18, 2025
WatchGuard has disclosed that certain versions of its Fireware OS are affected by an out-of-bounds write vulnerability in IKED. Find affected assets.