I'm really excited for the next 18 months of watchTowr's growth, and I'll be able to share more in the coming weeks. That being said - I continue my desire to work with people smarter than me. If you want to work with a clever team, please reach out - I can connect you.

despite shenanigans with CVSS scores, we can confirm the latest Veeam vulnerabilities (CVE-2024-40711) allow auth bypass. If you want to determine whether an instance is vulnerable, hit this endpoint. The latest version adds authentication. Speak soon.

Hot off the press from watchTowr Labs member SinSinology, with a nice side of silent patching from Veeam 😉 details to come later (CVE-2024-40711 and friends..). Special thanks to Soroush Dalili for his help with this exploit!

funny - a critical software vendor that tries to force vuln disclosures through HackerOne and their T&C (lol, good try) and bans external emails from security@ the disclosure will come to your inbox and the 90 days will start regardless - let your customers know if you care.

As I promised, things were coming :-) We are growing - fast - and we're looking for more world-class colleagues to work with. Reach out to anyone in the team for more info, or check out our open roles here: job-boards.eu.greenhouse.io/watchtowr

There is no subtweeting or subcontext here, but if you read this and the shoe fits - that might be a thought to pursue. When you discover a vulnerability in a product, you can do whatever you want with this information. You can sell it, keep it secret, publish it, disclose it

Thank you, Kevin cyberplace.social/@GossiTheDog/1…

The watchTowr team will be at Black Hat Europe today! 🚀🇬🇧 We’re excited to see everyone and discuss our research, upcoming research 🥷 and our ASM tech.

this means so much to the team - thank you ❤️

We've evolved. The watchTowr Platform now delivers Preemptive Exposure Management – built on our own vuln. research and real attacker telemetry. Proactive threat intel + EASM + continuous validation. Faster reaction. More time to respond. buff.ly/5ip8buj

15 years ago, I was dragged into an office and kicked out of high school – on Friday, I had the pleasure of discussing watchTowr on NYSE 🏛 TV. With the watchTowr Platform, we consistently enable orgs. to rapidly react to emerging threats. youtube.com/watch?v=AUPeQe…

we grew up in #phrack - so a huge thank you to our friends @ Phrack Staff for offering us the privilege to be on the back cover of Phrack 72. Did the scene die? Who knows ;-)

⏱️ Hours, Not Days: The Race from Disclosure to In-the-Wild Exploitation Join watchTowr’s Benjamin Harris with Patrick Garrity & Tod Beardsley, at #THREATCON1 to learn how automation and real-time intelligence let defenders act before attackers strike. threatcon1.org/presentations/…

At what point do we say enough is enough, and go beyond a pinky promise to do better? 🫡 As always, it was a pleasure to share my thoughts with CSO Online on behalf of watchTowr about the current state of security in mission-critical appliances. csoonline.com/article/407494…