Skip to content
Raxis
  • Home
  • Services
      Red Team Penetration Testing
    • Red Team
    • Breach and Attack Simulation
    • Phishing and Spear Phishing
    • Physical Penetration Testing
      • Penetration Testing
    • Penetration Testing Services
    • Raxis Attack: PTaaS
    • Raxis Strike: Penetration Test
    • Web Application Penetration Testing
    • API Security
    • Salesforce Applications
    • Internal Networks, Cloud, and VPC
    • External Networks and Internet
    • Wireless Networks
    • Mobile Applications
      • Cybersecurity Services
    • Elite Cybersecurity Services
    • Attack Surface Management
    • Cybersecurity Code Review
  • Industries
      Critical Infrastructure
    • Energy
    • Communications
    • Transportation
    • Water
      • Compliance Driven
    • Credit Card Industry (PCI)
    • Healthcare (HIPAA, FDA)
    • SOC 2
    • Education
    • Finance and Banking
    • GLBA Safeguards Rule
    • Government Agencies
    • Manufacturing
      • Technology
    • Technology and Software Development
    • Blockchain and Cryptocurrency
    • Media and Entertainment
    • Social Media
  • Resources
      Company Information
    • About Raxis
    • Become a Raxis Partner
    • Careers
    • Certifications
    • Meet Our Team
    • Signup for Raxis News
      • Resources
    • The Exploit Blog
    • Raxis One
    • Red, Blue, and Purple Teams
    • Penetration Test Glossary
    • Transporter Remote Pentesting
    • What is a Penetration Test?
  • The Exploit Blog
  • About Us
Contact Raxis Login
Raxis
Contact RaxisIcon Link to Contact Raxis
  • Home
  • Services
      Red Team Penetration Testing
    • Red Team
    • Breach and Attack Simulation
    • Phishing and Spear Phishing
    • Physical Penetration Testing
      • Penetration Testing
    • Penetration Testing Services
    • Raxis Attack: PTaaS
    • Raxis Strike: Penetration Test
    • Web Application Penetration Testing
    • API Security
    • Salesforce Applications
    • Internal Networks, Cloud, and VPC
    • External Networks and Internet
    • Wireless Networks
    • Mobile Applications
      • Cybersecurity Services
    • Elite Cybersecurity Services
    • Attack Surface Management
    • Cybersecurity Code Review
  • Industries
      Critical Infrastructure
    • Energy
    • Communications
    • Transportation
    • Water
      • Compliance Driven
    • Credit Card Industry (PCI)
    • Healthcare (HIPAA, FDA)
    • SOC 2
    • Education
    • Finance and Banking
    • GLBA Safeguards Rule
    • Government Agencies
    • Manufacturing
      • Technology
    • Technology and Software Development
    • Blockchain and Cryptocurrency
    • Media and Entertainment
    • Social Media
  • Resources
      Company Information
    • About Raxis
    • Become a Raxis Partner
    • Careers
    • Certifications
    • Meet Our Team
    • Signup for Raxis News
      • Resources
    • The Exploit Blog
    • Raxis One
    • Red, Blue, and Purple Teams
    • Penetration Test Glossary
    • Transporter Remote Pentesting
    • What is a Penetration Test?
  • The Exploit Blog
  • About Us

Cybersecurity Insights From The Frontlines

  • CVE‑2020‑12812 and Why It’s Still an Issue Five Years Later
    Exploits | In The News | Patching | Security Recommendations

    CVE‑2020‑12812 and Why It’s Still an Issue Five Years Later

    ByScottie Cole January 16, 2026January 12, 2026

    Principal Penetration Tester Scottie Cole explains why Fortinet released a new security advisory about CVE‑2020‑12812 and what your organization should check.

    Read More CVE‑2020‑12812 and Why It’s Still an Issue Five Years LaterContinue

  • Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint Vulnerabilities
    Exploits | In The News | Patching | Security Recommendations

    Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint Vulnerabilities

    ByJason Taylor July 22, 2025August 22, 2025

    Microsoft has released patches for two critical vulnerabilities allowing unauthenticated remote code execution that affect on-premises SharePoint installations.

    Read More Microsoft Releases Security Patch for Actively Exploited On-Premises SharePoint VulnerabilitiesContinue

  • Nagios XI Stored Cross-Site Scripting (XSS): CVE-2021-38156
    Patching | Security Recommendations

    Nagios XI Stored Cross-Site Scripting (XSS): CVE-2021-38156

    ByRaxis Research Team September 17, 2021

    Nagios is open-source network and system monitoring software. Raxis’ Matt Dunn has discovered a cross-site scripting vulnerability that could leave users open to attack.

    Read More Nagios XI Stored Cross-Site Scripting (XSS): CVE-2021-38156Continue

  • PRTG Network Monitor Stored Cross-Site Scripting Vulnerability (CVE-2021-29643)
    Patching | Security Recommendations

    PRTG Network Monitor Stored Cross-Site Scripting Vulnerability (CVE-2021-29643)

    ByRaxis Research Team August 20, 2021July 28, 2025

    Raxis lead penetration tester Matt Dunn uncovers a new vulnerability in the PRTG Network Monitor (CVE-2021-29643). Read more here.

    Read More PRTG Network Monitor Stored Cross-Site Scripting Vulnerability (CVE-2021-29643)Continue

  • SonicWall
    Patching | Security Recommendations

    SonicWall Patches Three Zero-Day Vulnerabilities

    ByRaxis Research Team April 21, 2021

    Cybersecurity company SonicWall has released patches for three zero-day vulnerabilities that are currently being exploited.

    Read More SonicWall Patches Three Zero-Day VulnerabilitiesContinue

  • Emblem of the Foreign Intelligence Service of the Russian Federation
    In The News | Patching | Security Recommendations

    NSA, FBI, CISA Statement on Russian SVR Activity

    ByRaxis Research Team April 21, 2021July 31, 2025

    The US government is warning businesses to beware of vulnerabilities being exploited by the Russian Foreign Intelligence Service (SVR RF). But that’s not the only group taking advantage. Here’s what you should do.

    Read More NSA, FBI, CISA Statement on Russian SVR ActivityContinue

  • Penguin with red cross
    Patching | Security Recommendations

    Sudo Privilege Escalation Vulnerability Discovered

    ByRaxis Research Team January 27, 2021

    Qualys has discovered and reported a serious vulnerability (CVE-2021-3156) affecting the sudo utility. Patches are now available and Raxis recommends applying them immediately.

    Read More Sudo Privilege Escalation Vulnerability DiscoveredContinue

  • Cisco with bandaids
    Patching | Security Recommendations

    Cisco Patches Critical Security Vulnerabilities

    ByRaxis Research Team January 22, 2021August 22, 2025

    Cisco releases patches for some critical and high-severity vulnerabilities. Learn about the vulnerabilities and patches from the Raxis penetration testing team.

    Read More Cisco Patches Critical Security VulnerabilitiesContinue

  • Raxis CTO, Brian Tant
    Password Cracking | Patching | Security Recommendations | Social Engineering

    3 Steps You Should Take Right Now to Reduce Your Risk of a Cyberattack

    ByBrian Tant June 22, 2020July 28, 2025

    In this video, Raxis CTO Brian Tant talks about three steps you should take to secure your network against hackers.

    Read More 3 Steps You Should Take Right Now to Reduce Your Risk of a CyberattackContinue

  • Hand using plastic card to open a locked door
    Exploits | In The News | Patching | Security Recommendations

    Windows 10 Vulnerability Highlights Need for Physical Security Testing

    ByRaxis Research Team May 28, 2020July 28, 2025

    A Windows 10 security problem offers an excellent example of what can happen when a bad guy gets to spend a few minutes alone with your computer.

    Read More Windows 10 Vulnerability Highlights Need for Physical Security TestingContinue

2870 Peachtree Road
Suite #915-8924
Atlanta, GA 30305 USA

+1 678.421.4544

Contact us online for faster response

About Raxis

  • About Raxis
  • Careers
  • Terms and Conditions
  • Privacy Policy
  • Penetration Testing Partner Program

Resources

  • The Exploit Blog
  • Transporter Remote Penetration Testing
  • Penetration Test Glossary
  • What is a Penetration Test?
Facebook X Instagram Linkedin YouTube