Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Announcing IONIX + Wiz: Bridging the Gap Between Security Validation and Cloud Security

We are thrilled to announce that IONIX has joined the Wiz Integration Network (WIN) Platform, strengthening our commitment to delivering exceptional security solutions to our customers. This integration brings together Wiz’s industry-leading cloud security platform with IONIX’s Cloud Exposure Validator, creating a powerful integration that addresses one of the most pressing challenges in cloud security today: distinguishing between potential cloud issues and actual exploitable risks.

3 Important Ways Attack Surface Management Must Evolve

For the second time in a row, Bitsight has been named an Overall Leader in the KuppingerCole Leadership Compass for Attack Surface Management (ASM)—and it’s not just a title. The report offers a deep dive into how organizations are using ASM to get ahead of cyber threats by proactively managing their digital risk.

EASM Buyer's Guide 2025: A guide for a futureproof EASM solution

Your external attack surface is growing — whether you’re aware of it or not. Cloud migration, IoT, AI, and remote work are all contributing to the rapid expansion of organizations’ external attack surfaces, and many security teams are struggling to keep up. According to a 2021 report, 69% of organizations admitted they had experienced at least one cyberattack that was initiated through exploiting an unknown or unmanaged internet-facing asset.

Outpost24 Named an Overall Leader in 2025 KuppingerCole Leadership Compass Report for Attack Surface Management

Recognition Solidifies Outpost24’s Leadership in Attack Surface Management PHILADELPHIA (May 27, 2025) — Outpost24, a leading provider of cyber risk management and threat intelligence solutions, today announced it has been recognized as an Overall Leader in the 2025 KuppingerCole Leadership Compass Report for Attack Surface Management and is the only European vendor named as an Overall Leader in the report. The company was also named a leader in the Product and Market categories.

CyCognito Integrates with Cloudflare for Direct Access to DNS

CyCognito is always seeking additional methods to discover customer external-facing assets. One such resource is an integration with content delivery network (CDN) management systems. Many organizations manage most or all their DNS records with CDNs, as they provide IT and security teams with centralized management visibility.

Halo Security Achieves SOC 2 Type 1 Compliance, Validating Security Controls for Its Attack Surface Management Platform

Halo Security, a leading provider of attack surface management and penetration testing services, today announced it has successfully achieved SOC 2 Type 1 compliance following a comprehensive audit by Insight Assurance. This certification validates that Halo Security's security controls and practices are properly designed and implemented to meet the SOC 2 trust principles.

Exploited! Grafana CVE-2025-4123 - Open Redirect & Stored XSS Give Attackers a Springboard Into Your Cloud

Grafana—the cloud-native observability dashboard almost every DevOps team relies on—rushed out Grafana 12.0.0-security-01 yesterday to squash CVE-2025-4123, a high-severity open-redirect and stored cross-site scripting (XSS) vulnerability. When chained with the popular Grafana Image Renderer plugin the bug escalates to a full-read server-side request forgery (SSRF), exposing cloud-metadata services and internal APIs.