Horizon3.ai

Tomorrow: Join Keith Poyser, VP EMEA, and Frédéric Nakhlé, Solution Architect Director, EMEA, for a practical look at how to measure EDR effectiveness using proof over perception. Discover how safe adversary emulation in production can reveal the real behaviors your tools detect, prevent, or miss altogether. You’ll walk away knowing how to: 💡 Identify hidden #EDR blind spots that attackers exploit every day. 💡 Understand the business impact of a single misconfiguration. 💡 Measure detection and prevention coverage with forensic proof. 💡 Prioritize remediation to maximize EDR ROI and resilience. Seats are limited — register now: https://lnkd.in/gQ-z9cas. #NodeZero #OffensiveSecurity #EndpointSecurity

Big news from Black Hat MEA: Horizon3.ai and CyberKnight have officially joined forces. 🤝 Demand for automated offensive security is surging across the region, and this partnership brings #NodeZero’s autonomous pentesting capabilities to enterprises that need continuous validation — not periodic assessments. With CyberKnight’s strong regional presence and trusted channel ecosystem, organizations across MENA can now integrate attacker-centric testing into their cloud, AI, and modernization programs and finally answer a critical question: Are we actually secure? Learn more about this partnership at https://lnkd.in/gjcxf9cW #BlackHatMEA #OffensiveSecurity #pentesting

The React Server Components vulnerability has dominated security discussions this week. CVE-2025-55182, also known as React2Shell, is a maximum-severity unauthenticated RCE affecting React 19, Next.js, and several related frameworks. As soon as details about CVE-2025-55182 (React2Shell) emerged, our team rapidly validated exposure across all customer environments. We immediately notified every impacted customer with guidance and mitigation steps, ensuring they were protected before public exploitation began. Our rapid response and verification workflows, powered by NodeZero, allowed us to move quickly and with confidence. If you need to upgrade, React patches are available in 19.0.1, 19.1.2, and 19.2.1. Next.js users should move to the patched releases, including 15.0.5, 15.1.9, 15.2.6, 15.3.6, 15.4.8, 15.5.7, and 16.0.7. Before and after patching, use the new Rapid Response test for CVE-2025-55182 to confirm whether your instances are actually exploitable and to validate that your fixes are effective. Visit https://lnkd.in/gUk9PaGT to understand the issue and verify real exposure in minutes. More analysis from our research team is coming soon.

Hundreds of organizations have used #NodeZero to run over 170,000 autonomous pentests across EDR-protected environments. The result? Real data to validate coverage, tune performance, and benchmark vendors before renewal. See what your EDR is missing, and prove ROI with evidence, not assumptions. 🔗 Run your EDR Healthcheck: https://lnkd.in/g--XVzre #EndpointSecurity #pentesting #infosec

Every organization has exposed data. The question is: does it matter? 🤔 Advanced Data Pilfering (ADP) uses GenAI reasoning to classify data risk, revealing which exposures lead to IP theft, operational disruption, or compliance impact. ADP turns DSPM theory into proof-driven prioritization. Learn how this fits into Risk-Based Vulnerability Management at https://lnkd.in/gGQZrEmY #RBVM #OffensiveSecurity #NodeZero

Threat Informed Perspectives helps organizations truly understand risk from an attacker’s viewpoint, then measurably reduce the blast radius over time. Security teams gain continuous, evidence-based visibility into how their controls perform in the real world, enabling faster prioritization, smarter investments, and provable resilience. At Horizon3.ai, we’re committed to giving defenders the advantage of clarity, speed, and certainty.

Here’s a question from Graham Cluley, host of Smashing Security: “Let’s say I’m a normal company. I do an annual pentest, I get a PDF report, I put it in my drawer, and file it away. Are you suggesting that’s not enough?” The simple answer is no, not if you want to stay out of the news. 👀 In this Smashing Security episode, Horizon3.ai CEO Snehal Antani and Graham discuss how autonomous pentesting, attacker reasoning, and AI are transforming modern #cybersecurity. They cover: • Why the attacker’s perspective is the only one that matters • How #NodeZero emulates real attack chains — not just vulnerabilities • What happens when AI can reach domain admin in 77 seconds • Why “one misconfigured endpoint” is all it takes to take the keys to the kingdom. • How defenders can adopt continuous, precision defense to keep up 🎧 Listen to the whole conversation at https://lnkd.in/gNm5fUvh. #OffensiveSecurity #pentesting #infosec

We’re proud to be recognized as a Customers’ Choice in the October 2025 Gartner Peer Insights™ “Voice of the Customer”: Adversarial Exposure Validation report! 🏆 This recognition reflects the voices of verified end users who’ve shared their experiences with AEV technologies over the past 18 months — and we’re honored to see Horizon3.ai among the most highly rated vendors. 💡 Read the report to explore what customers are saying: https://lnkd.in/gzMDqWRj. #VoiceOfTheCustomer #CustomersChoice #OffensiveSecurity #NodeZero

Strong lineup for CIO+CISO X San Francisco 2025. Horizon3.ai is looking forward to engaging with industry leaders on the future of cybersecurity, AI, and resilience.

Most organizations still treat #pentesting as a point-in-time event. Teams run a test once or twice a year, collect a long list of findings, and hope that means security is improving. It rarely does. Without a structured way to plan tests, retest fixes, or compare results over time, CISOs can’t answer the question their board keeps asking: “Is our exposure shrinking?” Threat Informed Perspectives change that. By viewing your environment through attacker-aligned lenses and tracking results over time, #NodeZero transforms pentesting from snapshots into a measurable security program. See how continuous, threat informed pentesting actually works → https://lnkd.in/g-Ztxc6W #OffensiveSecurity #infosec