Declaring War on Surface Area Sprawl
SecurityTrails got a big gut check at the beginning of last week. One of our Elasticsearch servers was unintentionally left open when an engineer was trying to fix an outage. This caused a series of self inflicted drama.
Incident: Re-generate API keys due to open Elasticsearch server
TL;DR: On Monday, June 29, 2020 we were notified by a security researcher that one of our Elasticsearch clusters was exposed to the Internet without any authentication. The configuration issue is resolved, but API usage logs may have been exposed.
New SurfaceBrowser™ Features: Company Activity & New Associations
Here at SecurityTrails we’re committed to doing our best, and it’s thanks to your constant support and feedback that we’re able to create amazing infosec-data based products to make your life easier than ever.
Top 10 Cybersecurity Blogs to Follow in 2020
Whether you’re a security professional, looking to pursue a career in this industry, or simply interested in the current security and threat landscape—and its societal, cultural and political impact—cybersecurity blogs are often the best source of information you can find online.
SecurityTrails Engineering Retreat: Bali
With all the growth SecurityTrails has been experiencing this past year, and being a fully remote company, many of us have yet to meet all of our fellow team members. When a company is still in its early stages, we tend to put much of our focus on building and perfecting our products. It might feel like there’s no time for anything other than work, but that’s when it’s time for a company retreat: on this occasion, for the entire engineering team!
Top 5 Talks from the 36th Chaos Communication Congress
With topics ranging from security, hardware and science to ethics, art and culture, the 36th Chaos Communication Congress delivered a lot of outstanding lectures, and we wanted to share our favorite five.
Hacker Hunks and Nerd Punks: 36th Chaos Communication Congress
In the days between Christmas and New Year’s Eve when holiday markets close their stands and put away their decorations, and the smell of mulled wine begins to fade, the vibrant German city of Leipzig becomes a hot spot for tens of thousands of hackers, enthusiasts, artists and like-minded individuals.
SecurityTrails Year in Review 2019
Now’s the time when we can take a thoughtful step back and reminisce about the events that have unfolded over the year. Please join us as we take a look at the many milestones, developments and innovations SecurityTrails has seen during the past twelve months.
Top 10 Hacker Movies of all Time
Hollywood has a knack for influencing public opinion on many different topics. It’s been doing just that for over a century, and hackers have been no exception.
Introducing ASR | The #1 Tool to Reduce your Attack Surface Area
From the very beginning, vulnerabilities, open ports and exposed critical applications have been the most easily detected components of your attack surface area, making them the most easily exploited by malicious actors.