Praetorian

F5 BIG-IP vulnerabilities leveraged by attackers: What to do?

November 2, 2023

The two BIG-IP vulnerabilities (CVE-2023-46747, CVE-2023-46748) F5 Networks has recently released hotfixes for are being exploited by attackers in the wild, the company has …

F5 fixes critical BIG-IP vulnerability, PoC is public (CVE-2023-46747)

October 30, 2023

F5 Networks has released hotfixes for two vulnerabilities affecting its BIG-IP multi-purpose networking devices/modules, including a critical authentication bypass …

Alexander Pagoulatos joins Praetorian as VP of Product

July 15, 2022

Praetorian announces the appointment of renowned industry leader Alexander Pagoulatos to the position of vice president of Product. “Alex is an energetic and collaborative …

Praetorian appoints Andrew McFarland as COO

June 23, 2022

Praetorian announced the appointment of high-tech industry veteran Andrew McFarland to the position of chief operating officer (COO). “With decades of experience, Andrew is an …

Spring4Shell: No need to panic, but mitigations are advised

March 31, 2022

Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an unauthenticated RCE zero-day vulnerability in Spring Core, a massively …

Log4Shell: A new fix, details of active attacks, and risk mitigation recommendations

December 15, 2021

Due to the extraordinary widespread use of the open-source Apache Log4j library, the saga of the Log4Shell (CVE-2021-44228) vulnerability is nowhere near finished. As Dr. …

Log4Shell update: Attack surface, attacks in the wild, mitigation and remediation

December 13, 2021

Several days have passed since the dramatic reveal of CVE-2021-44228 (aka Log4Shell), an easily exploitable (without authentication) RCE flaw in Apache Log4j, a popular …