The world’s first Dynamic Threat Detection Platform
Learn about MixMode’s Dynamic Threat Detection Solutions
MixMode’s use cases for your cyber initiatives
How customers in different industries utilize MixMode
Recently, Palo Alto Networks identified and patched a critical zero-day vulnerability in their next-generation firewalls (NGFWs). This vulnerability, tracked as CVE-2024-0012, allowed attackers to execute code on vulnerable devices remotely. This vulnerability has been actively exploited in attacks dubbed “Operation Lunar Peek.”
A recent Washington Post report sent shockwaves through the cybersecurity landscape, revealing that Chinese government-backed hackers have infiltrated at least two major US internet service providers (ISPs) and several smaller ones.
Alarming Intrusion: Chinese Government Hackers Target US Internet Providers Read More →
A severe zero-day vulnerability in Microsoft Windows, tracked as CVE-2024-38112, has been actively exploited by threat actors for at least 18 months. This security flaw in the Windows MSHTML Platform allows remote code execution, potentially compromising numerous organizations worldwide.
Critical Microsoft Zero-Day Vulnerability Exploited in the Wild for Over a Year Read More →
Summertime isn’t just for vacations and barbecues—it’s also prime season for zero-day attacks. These attacks, launched by malicious actors exploiting previously unknown vulnerabilities in software, are a significant concern for national security and cybersecurity professionals.
Nation-States and Zero-days Cranking Up the Heat Read More →
Zero-day threats continue to wreak havoc on organizations worldwide, with recent attacks targeting corporate and government networks. In the last few weeks, government-sponsored threat actors have targeted Palo Alto Networks and Cisco ASA (Adaptive Security Appliance).
Zero-Day Nightmare: Palo Alto, Cisco, and MITRE Under Attack Read More →
There’s bad news and not-so-bad news in the world of cybersecurity. In a recent report, Google revealed a significant rise in zero-day attacks, those exploiting previously unknown software vulnerabilities. However, despite the increase, there’s a silver lining.
Zero-Day Attacks on the Rise: Google Reports 50% Increase in 2023 Read More →
Hackathon events like Pwn2Own Automotive 2024 play a crucial role in shedding light on zero-day attacks and significantly benefit security teams in several ways. These events bring together talented security researchers, ethical hackers, and industry professionals to uncover and demonstrate vulnerabilities in automotive technologies, including zero-day exploits.
Driving Towards Zero-Days: Hackers Take Turns Uncovering Exploits at Pwn20wn Read More →
“Zero-day Summer” refers to the period during summertime when cybercriminals take advantage of the vulnerabilities in software, applications, and computer systems that remain undetected and unpatched by security teams.
Zero Day Summer is No Vacation Read More →
We discuss a real-life example of a zero-day exploit, focusing on the MOVEit Transfer Software, and how MixMode can detect and mitigate such threats before they become widespread.
Detecting the MOVEit Zero-Day: How MixMode AI Stays Ahead of Threats Read More →
With more and more large organizations relying on technology to conduct business, the need for a skilled CISO has become increasingly important. No longer just overseeing IT security efforts, the CISO is now responsible for a wide range of cyber defenses from data protection to compliance and even physical security.
Evolving Role of the CISO: From IT Security to Business Resilience Read More →
Zero-day attacks are considered the number one cybersecurity threat to company networks large and small. Understand what they are, why it’s so hard to detect them, and how artificial intelligence (AI) is helping to solve this modern problem.
A Proven Strategy For Defending Against Zero-Day Exploits And Attacks — Updated for 2023 Read More →
Hosted by Mark Ehr, Senior Consulting Analyst for 451 Research Advisors and Igor Mezic, Chief Scientist and CTO for MixMode on Tuesday, November 1st at 1pm EST / 10am PST, they will discuss why security analytics needs to include advanced Third-Wave AI, which autonomously learns normal behavior and adapts to constantly changing network environments, to address the next generation of cyberthreats and increase SOC productivity.
Webinar On Demand: Stopping Novel Attacks – Secure Your Business Against Unknown Threats Read More →
In the report, 451 Research explains why security analytics needs to include advanced Third-Wave AI, which autonomously learns normal behavior and adapts to constantly changing network environments, to address the next generation of cyberthreats and increase SOC productivity.
In our newest case study, “How a Major U.S. City Rapidly Modernized Its Cybersecurity Defenses,” we share how the City cut its cyber tool footprint in half, gained visibility into advanced foreign adversary attacks, and greatly improved the productivity of its SOC staff.
Case Study: How a Major U.S. City Rapidly Modernized Its Cybersecurity Defenses Read More →
Of all the challenges facing the modern SOC, two stand out among the most persistent and difficult to overcome: an overwhelming volume of false positive alerts and an alarming escalation in zero-day and novel threats that are often imperceptible by legacy systems.
The number of zero-day exploit discoveries hit record numbers in 2021, according to Google Project Zero. Instances of “in-the-wild 0-days” were up nearly double versus 2020, when only 25 0-day exploits were detected. In 2021, the total was 58.
Zero-day Exploit Discoveries Hit Record Numbers in 2021 Read More →
Experts have warned that the Russia-Ukraine conflict poses an unprecedented cyber risk for U.S. organizations as well as State and local governments and municipalities.
Local U.S. Governments and Municipalities at Risk of Foreign Nation Cyber Attacks Read More →
Chief Scientist and CTO for MixMode, Igor Mezic, wrote this article for Forbes magazine on the advantages of moving away from a legacy rule-based cybersecurity platform to a third-wave AI platform that can better detect zero-day threats.
Forbes: Comparing Legacy Rules-Based Cybersecurity Platforms And AI-Based Platforms Read More →
Log4j is the latest example of a zero-day exploit to be discovered and put a big part of the industry into chaos. Given its wide adoption by developers, the impact of the log4j exploit is quite broad and will take a tremendous amount of time to resolve.
Log4j: the Latest Zero-Day Exploit to Log Jam Cybersecurity Read More →
ou may be surprised to learn that log data is proprietary to each security platform vendor. There is no standard format or even a standard labeling mechanism. Your data only has context within the parameters of your SIEM vendor.
Dependence on Log Data | The Limitations, Hidden Costs, and Additive Nature of SIEM Read More →