See what we're thinking about, working on, & blogging about.

Explore the latest insights, ideas, & opinions from our talented team of experts & researchers.

runZero has six, count ‘em, six, talks at Vegas! runZero Perspective

Hacker Summer Camp is upon us, and we’ve got six talks happening across BSidesLV, The Diana Initiative, Black Hat, and DEF CON. Holy frijoles.

Subscribe Now

Get our latest Rapid Responses, insights, and blogs delivered directly to your inbox.

Welcome to the club! Your subscription to our newsletter is successful.

Rapid Response
How to find Cisco IOS & IOS-XE devices
May 7, 2025
Cisco Systems has disclosed 14 vulnerabilities in their devices which run Cisco IOS & IOS XE software. Here's how to find potentially vulnerable...
runZero Perspective
One Asset, Many Risks: Prioritizing the Stack Instead of the CVEs
April 29, 2025
runZero surfaces stacked, asset-level risks—like misconfigurations, EOL software, and weak segmentation—that traditional vulnerability scanners...
Rapid Response
How to find Craft CMS on your network
April 28, 2025
Two zero-day vulnerabilities impacting Craft CMS are being actively exploited. Here's how to find Craft CMS on your networks with runZero.
Rapid Response
How to find Commvault servers on your network
April 28, 2025
Commvault published a security advisory for a critical security vulnerability identified in the Command Center installation. Here's how to find...
runZero Perspective
Only Four Shopping Days Left Until RSAC!
April 24, 2025
In which Tod assures his fellow nerds that RSA Conference isn’t just for marketing hypesters.
runZero Perspective
Ditch Vulnerability Scanners: A Smarter Approach to Exposure Management with runZero Alongside Endpoint Agents
April 22, 2025
Ditch your vulnerability scanners. Leverage your endpoint agents for authenticated discovery. Use runZero for everything else. It's exposure...
Rapid Response
How to find ASUS AiCloud routers on your network
April 21, 2025
ASUS has disclosed a 'highly critical' vulnerability in several of its router models using its "AiCloud" functionality. Here's how to find impacted...
Rapid Response
How to find Erlang/OTP SSH servers on your network
April 17, 2025
Some versions of the Erlang/OTP embedded SSH server contain a highly critical vulnerability (CVE-2025-32433) in their handling of SSH protocol...
runZero Perspective
CVE Marches On
April 16, 2025
On April 15, 2025, the CVE program faced sudden shutdown fears — but CISA stepped in with last-minute funding. Crisis averted, for now.
Rapid Response
How to find Lantronix Xport devices on your network
April 16, 2025
On April 15, 2025, CISA published an advisory announcing that certain versions of the Lantronix Xport products are vulnerable to an authentication...
Rapid Response
How to find CrushFTP services
April 14, 2025
CrushFTP disclosed that a vulnerability in their file transfer product allows an unauthenticated remote attacker to bypass authentication on some...
runZero Perspective
VulnCon 2025 Wrapup
April 14, 2025
Last week, I got to see friends, enjoy Carolina barbecue, and hang out with super smart, fun people. VulnCon has turned out to be one of the most...