PRODAFT

🚨 Patch your Arista Networks products right now!🚨 Proud to announce that back in May 2024, we reported 9 zero-day vulnerabilities to Arista Networks, a leader in data-driven, client-to-cloud networking for large data canters, campuses, and routing environments. Security and network management solutions are natural targets for attackers looking to infiltrate companies through supply-chain vulnerabilities. At PRODAFT, our mission is to proactively identify vulnerabilities that could be exploited on a large scale—before adversaries have the chance.  I was also pleased to share these findings directly with key stakeholders at our TLP:Red event in the U.K. on June 7th. CVE-2024-9131 - Authenticated Remote Code Execution via Command Injection CVE-2024-9132 - Unauthenticated Remote Code Execution via Apache Python CustomHandler Endpoint CVE-2024-9133 - Privilege Escalation by Authentication Bypass via Abusing Local Access to JSON-RPC Endoint  CVE-2024-9134 - Low-privileged User Multiple SQL Injection Bypass Leads to Remote Code Execution CVE-2024-47517 - Leaking Authentication Tokens of all the Arista Devices across the world via SSH Forwarding due to Static Private Key CVE-2024-47518/CVE-2024-47519 - Leaking Backup Files via MITM due to insecure usage of curl CVE-2024-47520/CVE-2024-47521 - Jabsorb Java Unmarshalling Vulnerability A huge thank you to Arista Networks for their collaboration and commitment to security. Together, we’re making strides in strengthening the resilience of today’s networked environments. Further details: https://lnkd.in/eqR2R2bN

🔥 It's the last day of it-sa – Home of IT Security Conference and if you still haven't visited the PRODAFT booth 448 in Hall 7 then you better hurry up! 👁 Come and explore #BLINDSPOT, our risk intelligence platform that is a game-changing tool for your and your supply chain's cyber resilience. ✋ Allowing you to stop ransomware attacks before they manifest and comprehend your risk levels holistically, you will not face an unwanted surprise in your network ever again. 🙏 Thank you to everyone who's already stopped by our stand, it's been a pleasure to share our work with you! #itsaexpo #itsa2024 #riskintelligence #supplychain #cyberresilience #threatintelligence #cybersecurityfair #tradefair #ransomwareprevention

🏆 Day 1 of the it-sa – Home of IT Security Conference here we go! If you are here to see how to bring your company's resilience to the next level, and how to ensure no ransomware attack will ever compromise you, then you need to visit our PRODAFT booth. Worried about the increasing rate of supply chain attacks? No problem, we know how to solve this issue too. With our risk intelligence platform #BLINDSPOT, we can guarantee no unwanted surprises in your network. 📍 Where? Hall 7, number 448. 🕛 When? Anytime during the next 3 days of the it-sa conference. Don't be shy, come and have a chat - and grab some goodies on the way. 👋 See you soon! #itsaexpo #itsa2024 #cybersecurity #threatintelligence #riskintelligence #riskmanagement #BLINDSPOT #knowyouradversary #supplychainprotection #supplychainresilience

⚖️ Healthy work-life balance sometimes means swapping complex cyber challenges for more creative outings...such as cocktail workshops. 🤷 💪 Team building is undoubtedly an important part of a well-performing organization and that's why we took over the craft of cocktail-making during our last fun activity. 🍸 Our colleagues had a chance to try mixing various cocktails, and based on those facial expressions you can tell changing laptops for shakers was a well-received move (just don't take it as life advice, doesn't work that way). ✨ The cocktail workshop led to exploring various flavors while strengthening the team spirit. The best defense against #cyberthreats is a mixture of curiosity, dedication, and hard work, and we like to apply these skills to various challenges of life! #teambuilding #cybersecurity #riskintelligence #threatintelligence #PRODAFTteam #cocktailworkshop #dreamteam

As a representative of PRODAFT, it was a privilege to participate in the tabletop exercise hosted by the Europol Cybercrime Center, which focused on exploring potential strategies to disrupt the ransomware payment ecosystem.

🇩🇪 Nuremberg, one week to go before we bring our risk intel to you! ⏰ Next week, it-sa – Home of IT Security organizes its annual it-sa Expo & Congress. During October 22-24, you have a chance to attend the largest IT security trade fair in Europe. 💡 We at PRODAFT have spent over a decade understanding the actions of cybercriminals: their techniques, tactics, and motives to compromise companies around the globe. → With our unmatched visibility into their infrastructures, we give you actionable insights that prevent those attacks from turning into a ransomware nightmare. → Get rid of the noise and get equipped to stop any sort of supply chain attack before it's too late. 👋 You're serious about protecting your company, right?  Then we'll be seeing you at our booth 448 in Hall 7. #itsaexpo #itsa2024 #nuremberg #germany #cybersecurity #threatintelligence #riskintelligence #riskmanagement #supplychain #protection

❗Cybercriminals have the equipment needed to breach your unpatched systems. ❓Did you know that in Q2 of this year, exploit brokers kept selling various public and N-day vulnerabilities to cybercriminals? → In this way, they kept supplying ransomware operators and other threat actors with powerful tools to compromise unpatched systems. 💡 Thankfully, you can learn about their tactics thanks to our PRODAFT threat intelligence capabilities. 👇 See the analysis of key exploits sold & understand the overlooked danger: https://lnkd.in/eYYB7hnZ #CATALYST #threatintelligence #knowyouradversary #intelligencebriefing #ransomware #exploitbrokers #vulnerabilities #ndays

⚽ Do you remember our RAVEN Football team full of aspiring (and inspiring) football stars? 🌟 We hope so because you are looking at the team of prodigies! 🏆 These little ladies managed to win ALL of their games (4 out of 4 so far) and we could not be prouder. 🦾 Channeling the raven power, we wish them to upkeep this energy for the upcoming matches and to show everyone that hard work and dedication pays off - and of course, it massively helps if you simply love what you do. 🏃♀️ Powered by sweat, laughs, potent training sessions, and a tad bit of cyber, as the first all-girls team now playing in the largest Girls Football League in the UK, they are set towards big achievements and we are glad to witness those in real time! P.S.: See a bonus photo of one of the team members, Millie, with legendary former football player Luther Blissett. Seems like the word about the team's reputation travels fast and they're already getting famous in the football scene. 😎 #Prodaft #Football #Sponsorship #UnitedKingdom #berkshire #GirlsFootballLeague #BerkshireCountyFootballLeague #RavensFC #TechInSport 

📣 Last evening, our Managing Partner Koryak U. took part in the #TradeTalk by Nasdaq about the advancements in privacy and security regulations. 🎖️ Together with the experts from J2 Ventures and Winston & Strawn LLP, he joined Jill Malandrino in the discussion about efficient and comprehensive solutions for cyber teams. 🚥 In light of #CybersecurityAwarenessMonth, Koryak talked more about the techniques of ransomware operators, their victimology, our threat intelligence operations, and future developments in the cybersecurity field. 👉 If you didn't have a chance to catch it live, you can watch the recording here: https://lnkd.in/eYCDxy-H #cybersecurity #cybersecurityawarenessmonth #nasdaq #ransomwareprevention #riskintelligence #securityregulations

🚨 Exciting News: Catch Koryak U. on Nasdaq TradeTalks Today! 🚨 Today, Mr. Uzan will discuss ransomware threats and how even the most secure companies fall victim to organized cybercrime. He'll explore: - Why the US, UK, and Europe are the primary targets of ransomware groups. Are there deeper political agendas behind these financially-motivated attacks? Could nation-states be involved? 🤔 - How ransomware operators choose their victims and what companies can do to avoid becoming one. - The significance of Operation Cronos and how PRODAFT helped take down the notorious Lockbit group. What’s next in the evolving cyber threat landscape. 📅 Don’t miss it. Tune in Today to hear expert insights and get a glimpse into the future of cyber defense. Live Twitter Broadcast: 20:00 CET https://lnkd.in/gu5tHvSV #cybersecurity #ransomware #PRODAFT #TradeTalks #Nasdaq