SecurityTrails Blog

February Product Updates: ASI Technologies & SurfaceBrowser™ IP-Blocks Downloads
We've been hard at work getting our product updates ready and we're thrilled to kick them off for 2022. Today, we're announcing new feature launches and updates for our Attack Surface Intelligence (ASI) and SurfaceBrowser™ platforms.

A CISO’s Perspective on Attack Surface Reduction: SecurityTrails Fireside Chat with Terence Runge
2021 was a tumultuous period for cybersecurity: it was a record year for the number of reported data breaches. And who can forget Log4j vulnerability, Colonial Pipeline and Kaseya ransomware?

Attack Surface Management Driving Secure Digital Transformation
A recent study by IBM found that nearly six in ten responding organizations accelerated their digital transformation efforts due to the COVID-19 pandemic.

Maltego's Standard DNS Transforms: Now Powered by SecurityTrails
Today we are happy to announce that SecurityTrails is now powering Maltego DNS investigations on their popular Standard Transforms. This means that now you can use your current SecurityTrails API key to enrich your DNS-based research.

Pre-M&A Security Assessments: Importance of Asset and Risk Discovery
In 2021, reports show that global M&A volumes topped $5 trillion. It makes sense: organizations pursue mergers and acquisitions in order to stimulate growth, gain competitive advantage, increase market share through gaining or consolidating personnel, technology and intellectual property.

SecurityTrails has been acquired by Recorded Future
We at SecurityTrails are thrilled to announce that we have been acquired by our long-standing partner, Recorded Future.

Resolving Alert Fatigue in SOCs with Asset Context for Incident Evaluation
Cyber threats in the modern IT landscape can lead to severe fallout, including compromised data, damage to brand reputation, and loss of customers and revenue. In order to effectively minimize risk, many organizations rely on automated security solutions and software that provide real-time risk analysis and produce alerts whenever an anomaly is detected.

SecurityTrails Year in Review 2021
After 2020, a year of unprecedented change and revelation, and with the whole world facing a multitude of challenges, we entered 2021 colored in a fresh layer of optimism, confidence and defiance.

Understand Your Log4Shell Exposure with Detailed Asset Inventory
On Friday, December 10 2021, the SecurityTrails research team started tracking a critical vulnerability in the widely used Java-based Apache library Log4j. Dubbed Log4Shell (CVE-2021-44228), this vulnerability has shaken the cybersecurity community as well as organizations across the globe.

Critical Log4j Vulnerability Threatens Major Internet Players
The SecurityTrails research team is tracking a critical RCE vulnerability in Apache Log4j which affects many major internet-facing services. Log4j is a Java logging package that's used in many popular services and utilities. With a CVSS score of 10, this vulnerability (CVE-2021-44228) impacts Apache Log4j versions 2.0-beta9 to 2.14.1 according to Apache.