Posts tagged ‘Security’
Resiliency Is the New SLA: Why AI Demands an Always-On Intelligent Edge
For decades, we’ve measured the network in terms of uptime percentages and bandwidth tiers. In the AI era, those metrics are no longer enough. Resiliency, which is the ability to deliver uninterrupted, any-directional, application-aware connectivity in the face of unpredictable AI workloads, is the new SLA.
CVE-2026-41940: Inside the cPanel/WHM Authentication Bypass
Introduction Hosting control panels operate with near-total authority over a server: websites, databases, DNS, email, and the account lifecycle are all driven from one place. That privilege makes them a high-value target—when a control-plane bug appears, compromise can extend far beyond a single site. CVE-2026-41940 is a pre-authentication bypass affecting WebPros cPanel & WHM (WebHost Manager) and WP2 (WordPress Squared). In practical terms, it lets a remote, unauthenticated attacker reach administrator-level control without supplying valid credentials. Background: What Is cPanel/WHM? cPanel is a widely deployed, Linux-based hosting panel. WHM is the higher-privileged layer used by resellers and server administrators to…
Compliance: Mapping the Coast Guard’s MTSA Cyber Rule to VersaONE
Here is how Versa Unified SASE platform translates 33 CFR Part 101, Subpart F into controls for compliance.
The Ghost in the Leased Line: Unmasking MuddyWater, Surgical Cyber Arm
In the high-stakes theater of global geopolitics, the most effective weapons aren’t always missiles; sometimes, they are just few lines of code.
Closing the Cloud Security Posture Management Gap with Versa CSPM
Today’s environments span multi-cloud infrastructure, SaaS ecosystems, remote endpoints, and an increasing layer of AI-driven applications and integrations. This expansion has introduced a new class of challenges—not just scale, but visibility.
Identity Is the New Perimeter. Stryker Just Taught Us That the Hard Way.
A story on how an Iran-linked group wiped tens of thousands of Stryker’s devices A nation-state attack that changes every assumption we had For years, we have treated nation-state threats as a “Tier 1” problem — something reserved for defense contractors and the energy grid. The March 2026 attack on Stryker Corporation by Iran-linked group Handala officially kills that assumption. On March 11, 2026, Stryker’s corporate Microsoft environment was hit. Employees arrived to find their managed devices wiped out overnight through entirely legitimate Intune commands. Handala claimed 200,000+ systems affected; independent reporting confirms that tens of thousands were impacted. Stryker’s…
Automating Branch-to-Cloud Connectivity and Security: Versa Secure SD-WAN Integration with Zscaler Internet Access
We’re excited to introduce an automated integration between Versa Secure SD-WAN and Zscaler that makes dual-vendor SASE faster, secure and resilient. This integration helps you secure local internet breakout, improve user experience and simplify operations
Why Identity Alone Isn’t Enough: Device Posture in Contextual Zero Trust Security
Identity-based access is incomplete without device posture. Learn how contextual Zero Trust and continuous endpoint profiling reduce standing privilege risk in Dynamic Enterprises.
BrickStorm Malware: Anatomy of a Stealth Linux Backdoor Targeting Modern Infrastructure
BrickStorm is a highly stealthy Linux backdoor designed for long-term, targeted cyber-espionage. Brickstorm is closely associated with Cyber Espionage group UNC5221, which is known for exploiting zero-days vulnerability in network edge appliances like Ivanti, F5 and MiTRE breach. Unlike commodity malware, BrickStorm is deployed post-compromise, operates largely in memory, and uses a modular architecture with custom encrypted command-and-control (C2). Its focus on Linux servers, network appliances, and embedded systems reflects a broader trend: attackers increasingly target infrastructure layers where visibility and detection are weakest.
‘Secure by Design’ at Versa: One Year of Progress
Security is a product decision, not an afterthought. As a further commitment to this principle and as a reflection of our pledge to the CISA Secure by Design goals, over the past year Versa has been putting them into practice across our platform, processes, and programs. Organized below around the seven Secure by Design pledge goals is a summary of the related new capabilities and enhancements we’ve delivered, along with a quick explanation of the importance of the changes.
Company Updates
Versa Featured as a Gartner Peer Insights™ Customers’ Choice for SSE
By Michelle Viray
December 11, 2025
At Versa, we take pride in knowing we’ve truly made a difference for our customers. We are deeply invested in products that solve real problems, not just features on a roadmap, but solutions that help real people do their best work. When customers take the time to share how Versa has helped them transform their organizations, it reminds us why we do what we do.
Product & Engineering
Secure Every Connection: Replacing VPNs with ZTNA to Protect Users, Data, and Applications Everywhere
By Dhiraj Sehgal
Senior Director, Product Marketing
December 11, 2025
How Zero Trust Network Access (ZTNA) replaces VPNs to secure users, data, and applications across cloud, branch, and remote environments.
Research Lab
Versa Threat Research Labs Spotlight – DeskRAT: TransparentTribe’s Latest Weapon for Targeted Espionage
By Shivam Lasiyal
Security Engineer - Research
November 25, 2025
TransparentTribe (also known as APT36), a state sponsored threat actor known for long running cyber espionage against defense and government sectors, has launched a new campaign leveraging a custom Remote Access Trojan (RAT) dubbed DeskRAT. This malware is distributed through phishing emails containing malicious attachments or links that deliver the payload to targeted systems.
Industry Insights
From Breach Fatigue to Resilient Confidence: Why Unified SASE Is the Antidote to Today’s Cybersecurity Stalemate
By Kevin Sheu
VP of Product Marketing
November 17, 2025
Learn how Unified SASE helps enterprises overcome cyber fragmentation, boost resilience, and unify Zero Trust security across hybrid environments.
Industry Insights
Delivering on Gartner’s Hybrid Mesh Firewall Framework
By Anil Gupta
Product Marketing
November 13, 2025
Hybrid work, hybrid clouds, and distributed enterprise architectures have made one thing clear: security can no longer be built around a single perimeter. Today’s networks span branches, multi-cloud workloads, data centers, and thousands of IoT and remote endpoints. Yet many organizations still operate siloed firewall architectures that weren’t designed for this reality — leaving them with fragmented visibility and inconsistent policy control.
Industry Insights
Why Versa’s API-Based CASB is Essential for Modern Enterprises
By Anusha Vaidyanathan
Sr. Director, Product Management
November 6, 2025
Versa’s Cloud Access Security Broker (CASB) effectively deals with today’s enterprise security challenge of accessing SaaS applications, as we’ll explore further in this blog.
Industry Insights
Securing OT with Versa NGFW: A Practical Guide for Network Security Leaders
By Anil Gupta
Product Marketing
September 18, 2025
Operational Technology (OT) is no longer an air-gapped island. Manufacturing and distribution sites now connect Programmable Logic Controllers (PLCs), Human-Machine Interfaces (HMIs), and sensors to cloud analytics and remote vendors, which expands both capability and the attack surface. In this context, Versa’s Next‑Gen Firewall (NGFW), delivered as part of its Universal SASE platform, provides OT‑aware visibility, segmentation, continuous inspection, and zero-trust controls to protect these devices.
Product & Engineering
Understanding DORA Compliance with Versa
By Dhiraj Sehgal
Senior Director, Product Marketing
September 16, 2025
Learn how Versa Networks helps financial institutions meet DORA compliance with secure, resilient networking and ICT risk management solutions.
Industry Insights
Pin. Protect. Prevent. Geo-Tracking & Unauthorized Device Movement Detection with Versa
By Sambuj Dhara
Product Analyst
September 3, 2025
Learn how Versa protects against SD-WAN device theft, tampering, and unauthorized movement with geo-tracking, telemetry, and cryptographic authentication.
Product & Engineering
How Hackers Use DNS to Spread Malware, and How Versa DNS Security Stops It
By Shubham Sangle
Product Manager
August 19, 2025
Discover how Versa DNS Security detects and blocks advanced DNS-based threats, including malware hidden in TXT records and DNS tunneling attacks.
Subscribe to the Versa Blog




