Lightnews — Scholar-powered news

ONYPHE

@onyphe.io

📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #Ivanti product:

CVE-2025-4427+CVE-2025-4428 unauth RCE

search.onyphe.io/search?q=cat...

Thanks to watchTowr for detection method.

May 16, 2025 at 10:08 AM

ONYPHE

@onyphe.io

The recovery continues, but things are not yet back to normal

April 29, 2025 at 4:54 AM

ONYPHE

@onyphe.io

Things are not yet getting better in Spain and Portugal. General downward trend and some visible instability in the remaining networks that are reachable.

#PowerOutage

Chart showing Internet scan data for France, Spain and Portugal. Spain and Portugal show significant drops in devices responding at 12:30, and some significant instability visible in Spanish networks from 17:00 to 20:00

April 28, 2025 at 6:47 PM

ONYPHE

@onyphe.io

The electrical power outage in Spain and Portugal as seen from the Internet (France included for reference)

A chart showing Internet scan data plots for three countries; Spain, Portugal and France. The three lines are stable, with minor variations from 09:00 to 12:30. At 12:30 the lines for Spain and Portugal drop almost vertically to roughly 50% of their original levels. The line for France continues as for the start of the day.
The lines for Spain and Portugal have not returned to their original levels.

April 28, 2025 at 4:03 PM

ONYPHE

@onyphe.io

💥 Great news 💥

#ASD #AttackSurfaceDiscovery APIs are on their way to general availability.

It will never be as easy to create an asset inventory for any organization attack surface #EASM

Backed by 10th of billions of informations we collect.

March 1, 2025 at 5:37 PM

ONYPHE

@onyphe.io

📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #PaloAltoNetworks PA product:

CVE-2025-0108: authentication bypass on management interface

search.onyphe.io/search?q=cat...

Thanks to @assetnote.io for having shared the detection method.

February 14, 2025 at 9:16 AM

ONYPHE

@onyphe.io

🎉 Retrospective 2024 and Roadmap 2025

👉 Over the last 12 months, we massively increased our visibility of Internet exposed assets. Until now, we focused on #ASM, but this year we will improve our automatic #ASD and expand into the #CTI segment.

Read more: search.onyphe.io/docs/write-u...

January 31, 2025 at 2:22 PM

ONYPHE

@onyphe.io

And for the previous report, written in 2022:

www.greynoise.io/blog/new-sen...

Many thanks to @hrbrmstr.dev on X for this study.

January 21, 2025 at 1:21 PM

ONYPHE

@onyphe.io

📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #Fortinet FortiGate product:

CVE-2024-55591: unauthenticated remote issue allows to gain super-admin privileges

search.onyphe.io/search?q=cat...

Thanks to @WatchTowr for sharing detection method.

January 17, 2025 at 5:43 PM

ONYPHE

@onyphe.io

📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #SimpleHelp SimpleHelp product:

CVE-2024-57727: sensitive information disclosure caused by path traversal vulnerability

search.onyphe.io/search?q=cat...

January 17, 2025 at 3:13 PM

ONYPHE

@onyphe.io

Just starting to scan #IPv6 at application layer and already found a compromised device running a #MeshCentral #C2 #Panel

January 12, 2025 at 3:47 PM

ONYPHE

@onyphe.io

The Great #Honeypot of China in one picture:

December 21, 2024 at 9:01 AM

ONYPHE

@onyphe.io

📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #Mitel MiCollab product:

CVE-2024-35286: unauthenticated SQL injection on login page
CVE-2024-41713: unauthenticated arbitrary file read

www.onyphe.io/search?q=cat...

December 6, 2024 at 9:58 AM

ONYPHE

@onyphe.io

📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #PaloAltoNetworks PA product:

CVE-2024-0012: authentication bypass on mgmt interface
CVE-2024-9474: authenticated (bypassed) RCE on mgmt interface

www.onyphe.io/search?q=cat...