Blog | Holm Security (4)

February 27, 2024 — Cyberattacks & exploits Critical vulnerabilities discovered in ConnectWise ScreenConnect Two critical vulnerabilities have been discovered in ConnectWise ScreenConnect, a remote desktop and mobile support solution, with one vulnerability exploited in the wild. When exploited in tandem, these vulnerabilities allow a malicious threat actor to...

January 24, 2024 — Cyberattacks & exploits Critical security flaw in GoAnywhere MFT: Users exposed to unauthorized admin access

Understanding CVE-2024-0204 This vulnerability, with a high CVSS score of 9.8, arises...

January 23, 2024 — Cyberattacks & exploits Exploited vulnerabilities in Ivanti: Connect Secure and Policy Secure pose serious threats

Understanding CVE-2023-46805 & CVE-2024-21887 CVE-2023-46805, rated CVSS 8.2, is a...

October 18, 2023 — Cyberattacks & exploits Cisco zero-day vulnerability: Exploiting thousands of devices

Understanding CVE-2023-20198 The vulnerability, rooted in the web UI feature, affects...

Filter posts

September 7, 2023 — Compliance DORA decoded: Fusing operational resilience & vulnerability management

What is the Digital Operational Resilience Act (DORA)? The Digital Operational Resilience Act (DORA), or Regulation (EU) 2022/2554, addresses a crucial gap in...

July 3, 2023 — Compliance PCI DSS 4.0: What you need to know

What is PCI DSS? PCI DSS, or Payment Card Industry Data Security Standard, is a globally recognized security standard designed to fortify card data security....

June 21, 2023 — Vulnerability management Debunking misconceptions: Common objections to vulnerability management

We’ve recently done a pen test of our infrastructure Pen tests are a great step in securing your business. While penetration testing is complementary to...

June 8, 2023 — Company news Bulwark & Holm Security partner to enhance cyber security in the Middle East

Organizations in the Middle East will be able to better protect themselves against business-crippling cyber hacks that cost the region millions of dollars...

June 7, 2023 — API Security The beginner's guide to API security

Understanding API security Let’s start at the beginning. What are APIs? In modern mobile, SaaS, and web applications, APIs play a crucial role and can be found...

June 2, 2023 — Cyberattacks & exploits MOVEit Transfer zero-day vulnerability exploited in data theft attacks

MOVEit Transfer is a popular file transfer program developed by Ipswitch, a subsidiary of US-based Progress Software Corporation, and widely used by...

The complete platform for a systematic, risk-based, and proactive cyber defense.

Latest insights

Filter posts