Expanse is excited to announce support for a new python Software Development Kit (SDK) to empower customers on their journey to leverage all of Expanse’s different APIs. We understand that many organizations have complex, bespoke workflows that can require custom engineering to build and maintain. In this spirit, we’re confident that this SDK will allow… Continue reading…
Welcome to the second installment of Expanse’s new blog series, Internet Data Bytes. In our last article, we demonstrated just how common risky Internet assets and communications are across a set of major healthcare companies. In this edition, we’re looking at what a typical week looks like for the global enterprise networks of 12 of… Continue reading…
Expanse Finds SSH, FTP, and POP3 to Be the Most Commonly Exposed Cloud Services Among Top Enterprise Organizations At Expanse, we’re committed to helping our customers manage their complete global attack surface. To further support this mission, Expanse is rolling out enhanced visibility into customers’ cloud attack surface by displaying co-located cloud assets in the… Continue reading…
There’s a reason why databases should never be exposed on the public Internet. They are generally repositories of data—oftentimes sensitive data—that are meant to only be accessed by authorized internal users. The fact that anyone with an email address and a credit card can spin up a new database in the cloud with sensitive corporate… Continue reading…
If you are like 48 of the Fortune 50 companies and multiple government agencies, you likely use some F5 BIG-IP product family. This line includes load balancers, access gateways, and application delivery controllers to name a few. On July 1, F5 disclosed that security researchers at Positive Technologies had identified two new vulnerabilities for certain… Continue reading…
Problem A large state police department faced challenges in identifying and securing attack vectors across its remote attack surface. The department had unintentionally exposed more than 75 Remote Desktop Protocol (RDP) servers, the majority of which corresponded to state police cruiser vehicles, that could have left the department open to attack by malicious actors online.… Continue reading…
Internet Data Bytes: Healthcare Welcome to Expanse’s new blog series, Internet Data Bytes! This series will examine trends and cybersecurity risks Expanse regularly uncovers through our unique observations of Internet-accessible systems and services belonging to the world’s largest and most complex organizations. For this edition, we’re taking a quick dive into what a typical week… Continue reading…
SIEM and SOAR products exist to solve many of the same problems that security teams face today: to collect, normalize, aggregate, correlate, detect, alert on, and remediate across an ever-increasing number of disparate information vectors in order to manage security events in their networks. While these two classes of tools do have some similarities, they… Continue reading…
Expanse is pleased to announce the release of our new integration for Splunk Phantom. As a Security Orchestration, Automation, and Response (SOAR) solution, Phantom plays a critical role in many of our customers’ ecosystems, helping them improve security teams’ efficiency and reduce incident response times. Many of our customers in the Splunk universe are already… Continue reading…