Despite the release of Kerberos more than 20 years ago, many enterprises today have not transitioned away from using NTLM authentication in their...

Software solutions have had to evolve rapidly to keep pace with cybersecurity threats. Today, nearly every significant software solution is loaded...

This is a continuation of the Sage 300 case study series where we explore the process of discovering and developing exploits for six (6) different...

This is a continuation of the Sage 300 case study series where we explore the process of discovering and developing exploits for six (6) different...

In 2022 Konrad Haase, a member of the Control Gap Offensive Security team, discovered a series of vulnerabilities in Sage 300, a well-established...

Businesses of all sizes have increasingly been developing and deploying complex internet-facing web applications to provide consumers with richer...

In modern cyberattacks, threat actors will often begin their attacks against enterprises by obtaining low-privileged access to a single system in the...