Skip to content
Raxis
  • Home
  • Services
      Core Services
    • Raxis Red Team
    • AI Augmented Penetration Testing
    • Penetration Testing as a Service (PTaaS)
    • Elite Cybersecurity Services
    • Raxis listed as a Sample Vendor for Penetration Testing as a Service in two Gartner® Hype Cycle™, 2024 reports
      • Penetration Testing
    • Penetration Testing Services
    • Web Application Penetration Testing
    • API Security
    • Salesforce Applications
    • Internal Networks, Cloud, and VPC
    • External Networks and Internet
    • Wireless Networks
    • Mobile Applications
      • CyberSecurity Services
    • Compliance: PCI, HIPAA, GLBA, and more
    • Attack Surface Management
    • Breach and Attack Simulation
    • Cybersecurity Code Review
    • Cybersecurity Red Team
    • Phishing and Spear Phishing
    • Social Engineering
  • Industries
      Critical Infrastructure
    • Energy
    • Communications
    • Transportation
    • Water
      • Compliance Driven
    • Credit Card Industry (PCI)
    • Education
    • Finance and Banking
    • GLBA Safeguards Rule
    • Government Agencies
    • Healthcare (HIPAA)
    • Manufacturing
    • SOC 2
      • Technology
    • Technology and Software Development
    • Blockchain and Cryptocurrency
    • Media and Entertainment
    • Social Media
  • Resources
      Company Information
    • About Raxis
    • Careers
    • Meet Our Team
    • Signup for Raxis News
      • Resources
    • The Exploit Blog
    • Become a Raxis Partner
    • Certifications
    • Raxis One
    • Transporter Remote Pentesting
      • About Ethical Hacking
    • An Inside Look at a Raxis Red Team
    • Red, Blue, and Purple Teams
    • Penetration Test Glossary
    • What is a Penetration Test?
    • What is Web Application Penetration Testing?
  • The Exploit Blog
  • About Us
Contact Raxis Login
Raxis
Contact RaxisIcon Link to Contact Raxis
  • Home
  • Services
      Core Services
    • Raxis Red Team
    • AI Augmented Penetration Testing
    • Penetration Testing as a Service (PTaaS)
    • Elite Cybersecurity Services
    • Raxis listed as a Sample Vendor for Penetration Testing as a Service in two Gartner® Hype Cycle™, 2024 reports
      • Penetration Testing
    • Penetration Testing Services
    • Web Application Penetration Testing
    • API Security
    • Salesforce Applications
    • Internal Networks, Cloud, and VPC
    • External Networks and Internet
    • Wireless Networks
    • Mobile Applications
      • CyberSecurity Services
    • Compliance: PCI, HIPAA, GLBA, and more
    • Attack Surface Management
    • Breach and Attack Simulation
    • Cybersecurity Code Review
    • Cybersecurity Red Team
    • Phishing and Spear Phishing
    • Social Engineering
  • Industries
      Critical Infrastructure
    • Energy
    • Communications
    • Transportation
    • Water
      • Compliance Driven
    • Credit Card Industry (PCI)
    • Education
    • Finance and Banking
    • GLBA Safeguards Rule
    • Government Agencies
    • Healthcare (HIPAA)
    • Manufacturing
    • SOC 2
      • Technology
    • Technology and Software Development
    • Blockchain and Cryptocurrency
    • Media and Entertainment
    • Social Media
  • Resources
      Company Information
    • About Raxis
    • Careers
    • Meet Our Team
    • Signup for Raxis News
      • Resources
    • The Exploit Blog
    • Become a Raxis Partner
    • Certifications
    • Raxis One
    • Transporter Remote Pentesting
      • About Ethical Hacking
    • An Inside Look at a Raxis Red Team
    • Red, Blue, and Purple Teams
    • Penetration Test Glossary
    • What is a Penetration Test?
    • What is Web Application Penetration Testing?
  • The Exploit Blog
  • About Us

The Exploit

Raxis Cybersecurity Insights From The Frontlines

  • The @ctrl/tinycolor NPM Attack
    AI | In The News

    The @ctrl/tinycolor NPM Attack: The Brutal Anatomy of a Cascading Supply Chain Breach

    ByBrian Tant November 6, 2025November 3, 2025

    Over 40 major packages were exploited in this malware campaign. Learn what happened and what your organization should do if you have been affected.

    Read More The @ctrl/tinycolor NPM Attack: The Brutal Anatomy of a Cascading Supply Chain BreachContinue

  • Windows Kills Common Offline/Account-less Install Method
    In The News | Networks

    Windows Kills Common Offline/Account-less Install Method

    ByRyan Chaplin October 17, 2025October 21, 2025

    Microsoft Windows recently announced the removal of local-only installs on Windows 11. Raxis’ Ryan Chaplin looks at concerns and possible options.

    Read More Windows Kills Common Offline/Account-less Install MethodContinue

  • Salesforce Compromise: What You Need to Know
    Exploits | In The News | Phishing | Security Recommendations

    Salesforce Compromise: What You Need to Know

    ByJason Taylor October 15, 2025October 13, 2025

    The FBI has released information to help organizations that are affected by recent attacks against Salesforce. Raxis’ Jason Taylor sums up next steps here.

    Read More Salesforce Compromise: What You Need to KnowContinue

  • SpamGPT: Protecting Your Company From Large-Scale Phishing
    In The News | Phishing | Social Engineering

    SpamGPT: Protecting Your Company From Large-Scale Phishing

    ByNathan Anderson October 9, 2025October 5, 2025

    SpamGPT, a complex phishing and social engineering suite has made the news recently. Learn what it is and how organizations can protect their employees.

    Read More SpamGPT: Protecting Your Company From Large-Scale PhishingContinue

  • Copilot Coming Soon to a Desktop Near You
    In The News | Security Recommendations

    Microsoft Copilot Coming Soon to a Desktop Near You

    ByJason Taylor October 2, 2025September 18, 2025

    With Microsoft automatically installing Copilot on Windows systems with Microsoft 365 desktop apps installed, organizations will want to set up AI policies.

    Read More Microsoft Copilot Coming Soon to a Desktop Near YouContinue

  • Lessons from the DaVita Healthcare Ransomware Attack
    In The News | Networks | Penetration Testing | Security Recommendations | Social Engineering

    Lessons from the DaVita Healthcare Ransomware Attack

    ByBrian Tant September 18, 2025September 15, 2025

    The DaVita ransomware attack is one of the most impactful recent healthcare breaches. Learn what happened and what could have been done to limit the impact.

    Read More Lessons from the DaVita Healthcare Ransomware AttackContinue

  • HTTP/1.1 Security News: What You Can Do Now
    Blog | In The News | Web Apps

    HTTP/1.1 Security News: What You Can Do Now

    ByJason Taylor September 16, 2025September 15, 2025

    A recent Portswigger white paper on HTTP/1.1 highlights critical security issues. If you use old products that still require it, here’s what you can do.

    Read More HTTP/1.1 Security News: What You Can Do NowContinue

  • Dev's Fast Reporting of Phish Reduced Impact on Blockchain Malware Attacks
    In The News | Phishing

    Dev’s Fast Reporting of Phish Reduced Impact on Blockchain Malware Attacks

    ByAndrew Trexler September 11, 2025September 9, 2025

    A recent successful phish allowed attackers to run malware targeting cryptocurrency transactions on various blockchains, but fast reporting limited the damage.

    Read More Dev’s Fast Reporting of Phish Reduced Impact on Blockchain Malware AttacksContinue

  • Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint Vulnerabilities
    Exploits | In The News | Patching | Security Recommendations

    Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint Vulnerabilities

    ByJason Taylor July 22, 2025August 22, 2025

    Microsoft has released patches for two critical vulnerabilities allowing unauthenticated remote code execution that affect on-premises SharePoint installations.

    Read More Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint VulnerabilitiesContinue

  • Cisco Releases Patch for CVE-2025-20188 - 10.0 CVSS
    Exploits | In The News | Security Recommendations | Wireless

    Cisco Releases Patch for CVE-2025-20188 – 10.0 CVSS

    ByScottie Cole May 8, 2025May 8, 2025

    Critical Alert – Patch Immediately. Cisco Releases Patch for CVE-2025-20188 – 10.0 CVSS. This vulnerability affects Cisco Catalyst 9800 wireless controllers.

    Read More Cisco Releases Patch for CVE-2025-20188 – 10.0 CVSSContinue

  • Jason with his friend Daniel handing out badges at OzSec 2024
    In The News | Raxis In The Community

    Raxis’ Jason Taylor Speaks on Badge Production at OzSec 2024

    ByJason Taylor October 18, 2024July 27, 2025

    Raxis’ Jason Taylor speaks about how he designed and created the badge for OzSec 2024 in Wichita, Kansas. Raxis is a proud sponsor of the annual conference.

    Read More Raxis’ Jason Taylor Speaks on Badge Production at OzSec 2024Continue

  • Penetration Testing as a Service (PTaaS)
    In The News | What People Are Saying

    Raxis listed as a Sample Vendor for Penetration Testing as a Service in two Gartner® Hype Cycle™, 2024 reports

    ByBonnie Smyre August 13, 2024

    We’re proud to announce that Gartner identified Raxis as a Sample Vendor for Penetration Testing as a Service in two Gartner Hype Cycle reports in 2024.

    Read More Raxis listed as a Sample Vendor for Penetration Testing as a Service in two Gartner® Hype Cycle™, 2024 reportsContinue

Page navigation

1 2 3 4 Next PageNext

2870 Peachtree Road
Suite #915-8924
Atlanta, GA 30305 USA

Contact us online

About Raxis

  • About Raxis
  • Careers
  • Terms and Conditions
  • Privacy Policy
  • Partners, Apply Here

Resources

  • The Exploit
  • Transporter Remote Penetration Testing
  • Penetration Test Glossary
  • What is a Penetration Test?
Facebook X Instagram Linkedin YouTube