See what we're thinking about, working on, & blogging about.

Explore the latest insights, ideas, & opinions from our talented team of experts & researchers.


How to find systems impacted by CVE-2024-3094 (XZ Utils backdoor) Rapid Response

Malicious code was pushed to the libxz-utils project that introduced a backdoor in SSH. Here's how to find potentially vulnerable systems.

Subscribe Now

Get our latest Rapid Responses, insights, & blogs delivered directly to your inbox.

Welcome to the club! Your subscription to our newsletter is successful.

Rapid Response
How to find Fortinet SSL-VPN
June 13, 2023
Fortinet warned customers this week of potential limited exploitation in the wild regarding a flaw affecting the SSL-VPN software component.
Product Release
runZero 3.9 Set measurable goals, find urgent issues, and preview of Attack Surface Management!
June 13, 2023
What’s new in runZero 3.9? Tracking goal progress, preview of Attack Surface Management, and new Rapid Responses!
Rapid Response
How to find Barracuda Email Security Gateways
June 9, 2023
Exploitation of Barracuda Email Security Gateway (ESG) appliances has made the news recently, including on-going investigation into the attacks.
Industry
Why spreadsheets are bad for cyber asset attack surface management
June 8, 2023
An accurate and full asset inventory is vital for an effective security program. Understand the risks and limits of using spreadsheets to manage...
Rapid Response
How to find MOVEit File Transfer Services
June 3, 2023
Reports of active exploitation of a zero-day vulnerability in the MOVEit file transfer software are making the rounds this week.
Rapid Response
How to find Zyxel Network Devices
May 31, 2023
Last month, Zyxel disclosed a remote command execution vulnerability affecting a handful of their product families. This vulnerability has been...
Rapid Response
How to find PaperCut services on your network
May 30, 2023
PaperCut recently revealed that two products in its popular line of print server software contain severe vulnerabilities currently being exploited...
Rapid Response
How to find Cisco Small Business switches
May 17, 2023
Cisco recently disclosed several highly critical vulnerabilities that affect some of their Ethernet switches designed for small businesses.
runZero Insights
runZero’s week at RSA 2023 killer robots, time machines, and natural disasters
May 12, 2023
Watch Chris Kirsch chat with Chris Nickerson, then Roger Rustad to talk pentesting “war stories”, and how runZero has helped the Fortinet team.
Product Release
runZero 3.8 Identify and triage your riskiest assets, track goals, identify even more things, and delete your password
May 9, 2023
What’s new in runZero 3.8? Identify and triage risky asset, public preview of goal tracking, protocol improvements, new and improved fingerprints,...
Product Release
Asset inventory is foundational to security programs
April 13, 2023
Asset inventory is the foundation of a strong cybersecurity posture. It is often considered the first step in identifying vulnerabilities and...
© Copyright 2024 runZero, Inc. All Rights Reserved