Blog | Holm Security (4)

January 24, 2024 — Cyberattacks & exploits Critical security flaw in GoAnywhere MFT: Users exposed to unauthorized admin access GoAnywhere Managed File Transfer (MFT) software by Fortra, widely used for secure file transfers, faces a critical security flaw that puts users at risk. This flaw, identified as CVE-2024-0204, allows unauthorized remote users to create admin accounts,...

January 23, 2024 — Cyberattacks & exploits Exploited vulnerabilities in Ivanti: Connect Secure and Policy Secure pose serious threats

Understanding CVE-2023-46805 & CVE-2024-21887 CVE-2023-46805, rated CVSS 8.2, is a...

October 18, 2023 — Cyberattacks & exploits Cisco zero-day vulnerability: Exploiting thousands of devices

Understanding CVE-2023-20198 The vulnerability, rooted in the web UI feature, affects...

September 7, 2023 — Compliance DORA decoded: Fusing operational resilience & vulnerability management

What is the Digital Operational Resilience Act (DORA)? The Digital Operational Resilience...

Filter posts

July 3, 2023 — Compliance PCI DSS 4.0: What you need to know

What is PCI DSS? PCI DSS, or Payment Card Industry Data Security Standard, is a globally recognized security standard designed to fortify card data security....

June 21, 2023 — Vulnerability management Debunking misconceptions: Common objections to vulnerability management

We’ve recently done a pen test of our infrastructure Pen tests are a great step in securing your business. While penetration testing is complementary to...

June 8, 2023 — Company news Bulwark & Holm Security partner to enhance cyber security in the Middle East

Organizations in the Middle East will be able to better protect themselves against business-crippling cyber hacks that cost the region millions of dollars...

June 7, 2023 — API Security The beginner's guide to API security

Understanding API security Let’s start at the beginning. What are APIs? In modern mobile, SaaS, and web applications, APIs play a crucial role and can be found...

June 2, 2023 — Cyberattacks & exploits MOVEit Transfer zero-day vulnerability exploited in data theft attacks

MOVEit Transfer is a popular file transfer program developed by Ipswitch, a subsidiary of US-based Progress Software Corporation, and widely used by...

May 29, 2023 — Cyberattacks & exploits Barracuda email security gateway appliance zero-day vulnerability

Security flaw in email security gateway The California-based company investigation has revealed that the flaw is rooted in a component that screens the...

The complete platform for a systematic, risk-based, and proactive cyber defense.

Latest insights

Filter posts