Blog | Holm Security

November 14, 2024 — Vulnerability Management Vulnerability management – more important than ever before A constantly growing challenge in an evolving threat landscape Today, technological advancements and digitalization introduce new challenges and a constantly evolving threat landscape. As these new threats emerge, our digital environments continue to expand....

November 13, 2024 — Vulnerability Management How vulnerability management helps comply with NIS2

Systematic & risk-based = proactive cyber defense When analyzing the key purpose of NIS...

May 10, 2024 — Hacker attacks & exploits Google Chrome Zero-Day Vulnerability Exploited in the Wild

Understanding the Vulnerability: A Memory Issue in Chrome The identified vulnerability...

April 12, 2024 — Hacker attacks & exploits Zero-Day Vulnerability in Palo Alto Networks PAN-OS Exploited in the Wild

Understanding the Vulnerability CVE-2024-3400 Tracked as CVE-2024-3400 and rated with the...

Filter Posts

February 27, 2024 — Hacker attacks & exploits Critical Vulnerabilities Discovered in ConnectWise ScreenConnect

Understanding the Vulnerabilities CVE-2024-1708 This is a path-traversal vulnerability with a CVSS score of 8.4 affecting ScreenConnect 23.9.7 and earlier,...

January 24, 2024 — Hacker attacks & exploits Critical Security Flaw in GoAnywhere MFT: Users Exposed to Unauthorized Admin Access

Understanding CVE-2024-0204 This vulnerability, with a high CVSS score of 9.8, arises from a path traversal weakness in the "/InitialAccountSetup.xhtml"...

January 23, 2024 — Hacker attacks & exploits Exploited Vulnerabilities in Ivanti: Connect Secure and Policy Secure Pose Serious Threats

Understanding CVE-2023-46805 & CVE-2024-21887 CVE-2023-46805, rated CVSS 8.2, is a vulnerability in the Ivanti Connect Secure (ICS) web component that allows...

October 18, 2023 — Hacker attacks & exploits Cisco Zero-Day Vulnerability: Exploiting Thousands of Devices

Understanding CVE-2023-20198 The vulnerability, rooted in the web UI feature, affects Cisco IOS XE software with enabled HTTP or HTTPS server features....

September 7, 2023 — Compliance DORA Decoded: Fusing Operational Resilience & Vulnerability Management

What is the Digital Operational Resilience Act (DORA)? The Digital Operational Resilience Act (DORA), or Regulation (EU) 2022/2554, addresses a crucial gap in...

July 3, 2023 — Compliance PCI DSS 4.0: What You Need to Know

What Is PCI DSS? PCI DSS, or Payment Card Industry Data Security Standard, is a globally recognized security standard designed to fortify card data security....

The complete platform for a systematic, risk-based, and proactive cyber defense.

Latest Insights

Filter Posts

Latest Insights

Subscribe To Our Newsletter

Filter Posts