runZero (Official Account)
LightNews LightNews
banner
runzero.com
runZero (Official Account)
@runzero.com
88 followers 18 following 160 posts
runZero was founded by https://bsky.app/profile/hdm.io to help organizations see and secure their total attack surface — including risky unknowns and unmanageable devices. Discover a new approach to exposure management today: start a free trial!
Posts Replies Media Videos
runzero.com
Vuln management often feels like reading 🔮 tarot cards. We use CVSS & EPSS to bring order to chaos — but are we making better decisions?

In this clip, @todb.hugesuccess.org breaks down a "volatile" CVE and why EPSS fluctuations matter most. 📈

📺 Watch the full talk: www.runzero.com/resources/no...
January 9, 2026 at 3:07 PM
runzero.com
Disputed CVEs are so hot right now 🔥

Join @todb.hugesuccess.org on a short jaunt down memory lane -- in the form of git commit histories -- as he kicks over some rejected CVE rocks, and pop-punk puns.

Check it out 👉 www.runzero.com/blog/all-ame...
January 8, 2026 at 2:57 PM
runzero.com
A luxury car in front of the Kremlin and a license plate hidden in shellcode. 🏎️🇷🇺

@hdm.io joins The Abhisek Cast to share stories from the early days of Metasploit and why "business optics" are the enemy of real defense.

Watch the full episode: 📺 www.runzero.com/resources/th...
January 6, 2026 at 3:30 PM
runzero.com
🏭 How do you secure OT environments without disruption?

Join @hdm.io, NetBox Labs and Accenture on January 22 to discuss the future of OT operations and security. They'll be talking data modeling, asset governance, and safe exposure management.

🎟️ Save your spot: netboxlabs.com/webinars/ope...
January 5, 2026 at 3:49 PM
runzero.com
This year, we aren't just making a resolution; we’re leading a shift in vuln management strategy.

@hdm.io discusses in several interviews why the legacy vuln management model is broken, and how we can collectively forge a better path forward.

📺 Watch here: www.runzero.com/blog/our-new...
December 31, 2025 at 4:13 PM
runzero.com
🔌 OT wasn’t supposed to be on your network. Yet here we are.

At DEF CON 33, Rob King shows how OT devices hide behind protocol gateways...and how to actually find them.

No magic, no vibes: just real discovery using CIP message forwarding and DNP3.

📺 www.runzero.com/resources/de...
December 29, 2025 at 3:41 PM
runzero.com
🎧 We collected some of our favorite podcasts of 2025 featuring @hdm.io for you to enjoy.

📺 So go ahead and get yourself some coffee (or hot cocoa!) & watch here: www.runzero.com/blog/fun-pod...
December 22, 2025 at 3:39 PM
runzero.com
🎄 A little holiday joy goes a long way.

The runZero team swapped keyboards for frosting bags and decorated cupcakes together. 🧁❄️

A reminder that great work starts with strong human connections.
December 19, 2025 at 3:38 PM
runzero.com
🔮 Every year, the cyber crystal ball gets dusted off.

But by the end of January they're ancient history. So this time @todb.hugesuccess.org put his old forecasts to the test.

Spoiler: there were some misses (nobody can really tell the future), but also a few hits that made us double-take.
December 18, 2025 at 6:02 PM
runzero.com
Australia’s Cyber Security Strategy is moving from policy to enforcement.

In part two of our series, Ali Cheikh & Doug Markiewicz break down Cyber Shield 4, the CIRMP mandate, and why asset visibility is the first step toward compliance.

👉 Read the blog: www.runzero.com/blog/securin...
December 18, 2025 at 3:01 PM
runzero.com
🤖🎄🧑🎄 The Holiday Hackstravaganza starts in 1 hour!

Live runZero Hour with trivia, prizes and cybersecurity insights.

👉Join: www.runzero.com/research/run...
December 17, 2025 at 5:00 PM
runzero.com
New runZero feature: Suppressions 🔕

Filter false positives, accepted risk, and non-actionable issues across Findings, Vulnerability Groups, or individual vulns, while keeping risk scoring accurate and auditable.

👉 Read more from @hdm.io: www.runzero.com/blog/vulnera...
December 16, 2025 at 3:11 PM
runzero.com
👾 Check out the hacker toys our researchers love & register for a chance to win your own:

The Holiday Hackstravaganza 🎄
🗓 Dec 17 · 1pm ET / 10am PT

👉 Blog: www.runzero.com/blog/our-fav...

👉 Live: www.runzero.com/research/run...
December 15, 2025 at 3:01 PM
runzero.com
📣 Two months post-Winpocalypse and…surprise! Windows 10 is still everywhere.

Not to brag but, we called it: end-of-life will not equate to end-of-use and the numbers don’t lie.

👉 Curious to learn more? Check out @todb.hugesuccess.org's blog from November: www.runzero.com/blog/winpoca...
December 12, 2025 at 2:32 PM
runzero.com
🔐 Zero Trust for OT just got real.

DoD released its first OT-focused guidance, defining Target vs. Advanced maturity and why IT models don’t translate.

If you secure OT, this matters.

👉 www.runzero.com/blog/dod-zer...
December 11, 2025 at 5:25 PM
runzero.com
#BlackHatEurope2025 we're back & better than ever!

Swing by booth #615 and try our immersive escape room — it’s your chance to flex those exposure management muscles!

Exclusive gear, great convos, and a few surprises await.

🔥 Bring your A-game!
December 11, 2025 at 1:02 PM
runzero.com
🎉 runZero is now officially a CVE Numbering Authority!

💪 Hear from @todb.hugesuccess.org on how we’re leveling up in the fight to keep networks safe.

Read the blog: www.runzero.com/blog/runzero...

Read the press release: www.runzero.com/newsroom/run...
December 10, 2025 at 2:09 PM
runzero.com
Exposure is everywhere now — cloud, SaaS, IoT, shadow IT, unmanaged vendors.

Replay the SC Media webcast with @sawaba.bsky.social, @hdm.io & @todb.hugesuccess.org to learn why continuous discovery matters & how attackers exploit what you can’t see.

👉 www.runzero.com/resources/as...
December 9, 2025 at 2:35 PM
runzero.com
SSH is still one of the strangest attack surfaces online.

Back at DEFCON, @hdm.io shared findings from internet-wide scans with SSHamble:

🔍 Where SSH is exposed
🐞 How quirks became auth bypass & RCE
🛠️ How SSHamble + Nuclei help defenders spot risk

🔗 www.runzero.com/resources/de...
December 8, 2025 at 3:14 PM
runzero.com
A full year of runZero Hour in the books!

Join us Dec 17 for the ❄️ Holiday Hackstravaganza ❄️ for your chance to win hacker toys for the holidays! We'll cover the best stories, strange vulns, predictions, trivia & more.

👉 www.runzero.com/research/run...
December 5, 2025 at 2:47 PM
runzero.com
Ready to level up your External Attack Surface Management game?

Don’t settle for “good enough.” Watch below for @todb.hugesuccess.org ’s top picks for what makes an EASM program truly great, and why these features matter more than ever.

👉 Get started here: www.runzero.com/platform/tot...
December 4, 2025 at 2:56 PM
runzero.com
#BlackHatEurope2025 is right around the corner!

Drop by runZero’s immersive escape room at Booth #615 to hunt for clues, crack the code and walk away with some serious SWAG (plus bragging rights).

👋 See you there: www.runzero.com/black-hat-eu...
December 3, 2025 at 2:24 PM
runzero.com
Curious how runZero data fits into BloodHound OpenGraph to generate visual attack paths?

@hdm.io breaks it down in this runZeroHound walkthrough...

➡️ www.runzero.com/blog/introdu...
December 2, 2025 at 3:12 PM
runzero.com
New on the blog: our favorite hacker gadgets of 2025 for exploring real-world systems.

We're gearing up for our Dec 17 “Holiday Hackstravaganza" where we'll offer three $200 Hak5 gift cards.

📟 See what we picked: www.runzero.com/blog/our-fav...
🎟️ RSVP: www.runzero.com/research/run...
December 1, 2025 at 3:09 PM
runzero.com
🎙️ The Hacker's Cache: Kyser Clark talks with Metasploit creator @hdm.io on why CVEs won’t save you in 2025.

They get into non-CVE vulns, hidden SSH risks, attacker innovation, AI’s impact, and why exposing version numbers can improve security.

👉 www.runzero.com/resources/wh...
November 28, 2025 at 2:20 PM