Eclypsium, Inc.

The SANS Internet Storm Center recently reported observing attackers attempting to exploit Ivanti product vulnerabilities. SANS ISC honeypots spotted probes testing for CVE-2023-46805 and CVE-2024-2188. Both vulnerabilities are listed on the CISA KEV and are typically chained together to provide the attackers unauthorized access. CVE-2024-46805 represented an authentication bypass, followed up by CVD-2024-21887, an authenticated command injection vulnerability. Both vulnerabilities can be identified using the Eclypsium platform: https://hubs.ly/Q02W9RKl0 #vulnerabilityalert #Ivanti #cyberthreat #cybersecurity #Eclypsium

If you're at #DoDIIS, stop by and visit the Eclypsium team at booth 1732!

We were honored to participate in a well-attended security workshop at the US Embassy in Tokyo last week! Here's our CEO Yuriy Bulygin speaking about establishing trust in the IT infrastructure supply chain, and meeting with Ambassador Rahm Emanuel. Photo Credit: U.S. Embassy, Sumi Mikoshiba

The landscape of global cyber threats continues to evolve, with sophisticated, state-sponsored campaigns aligned with China’s broader geopolitical objectives — particularly cyber espionage and targeting critical infrastructure — gaining attention. Among them are 4 major Advanced Persistent Threat groups: Volt Typhoon, Salt Typhoon, Flax Typhoon, and Velvet Ant. Our blog post explores the rise of these Chinese APT campaigns, and how you can defend against them. Read it here: https://hubs.ly/Q02VYbj80 #Cybersecurity #CyberThreat #APT #VoltTyphoon #SaltTyphoon #FlaxTyphoon #VelvetAnt

In episode 40 of our #BelowtheSurface #podcast, Matt Johansen, Head of Software Security at Reddit, Inc. & founder of Vulnerable U, joins Eclypsium's Paul Asadoorian to discuss the recent targeted attacks by Chinese threat actors, including the Volt Typhoon group. Listen in for a deep dive into the implications of back doors in #cybersecurity, the role of ISPs, the ongoing tension between privacy and security, and more. 🎧⤵️ https://hubs.ly/Q02VLjM10

Eclypsium Security Researcher Vladislav Babkin joins threat researchers from Infoblox next week to discuss Sitting Ducks in a special #webinar on understanding and mitigating domain hijacking threats. Register now to save your spot! #SittingDucks #domainhijacking #cybersecurity

With OEMs relying on an ever-changing network of component suppliers and downstream sub-suppliers, #cybersecurity risk begins well before a new device ever reaches your hands. Protect your #digitalsupplychain with Eclypsium. We give enterprises the tools to verify the integrity of devices, empowering organizations with detailed insight to hold suppliers accountable. We’d love to show you how ▶️ https://hubs.ly/Q02Vxqnz0 #CybersecurityAwareness #CybersecurityAwarenessMonth #supplychainsecurity

🚨 New #AQ2F Episode Alert! 🚨 Firmware vulnerabilities are more than just a tech issue—they're a national security concern. On this week’s All Quiet on the Second Front, Enrique Oti sits down with Paul Asadoorian, Principal Security Researcher at Eclypsium, Inc., to dive deep into the world of firmware security. What's Happening on the Second Front: 💥 Prime targets for attackers 💥 Turning false trust in tech into verified security 💥 The growing importance of firmware integrity in our supply chains 🎧 Tune in to hear how Paul and the team at Eclypsium are tackling the vulnerabilities hidden at the core of our devices. Check it out now 👇 Apple: https://lnkd.in/dmW9w68j Spotify: https://lnkd.in/d6y5yVyg Youtube: https://lnkd.in/dTb8jnVb

“New attacks at the firmware level…are getting news exposure almost daily. By deploying Eclypsium, we‘re staying ahead of these low-level threats. And we’re getting the right tools in place well before auditors ask for evidence of firmware protections, which can happen at any time given the increased threat levels facing credit unions.” - Steve Coffey, First Financial’s VP of Information Technology Because of their visibility and the way they reflect regional economic fortunes, all credit unions and vendors, regardless of size, are vulnerable to cyberattacks, warned National Credit Union Association Chairman Todd Harper last year. Read why Eclypsium was First Financial's firmware security vendor of choice to put them ahead of emerging threats. https://hubs.ly/Q02V8P-M0 #cybersecurity #firmwaresecurity #creditunion #customersuccess