Posts tagged ‘Security’
Resiliency Is the New SLA: Why AI Demands an Always-On Intelligent Edge
For decades, we’ve measured the network in terms of uptime percentages and bandwidth tiers. In the AI era, those metrics are no longer enough. Resiliency, which is the ability to deliver uninterrupted, any-directional, application-aware connectivity in the face of unpredictable AI workloads, is the new SLA.
CVE-2026-41940: Inside the cPanel/WHM Authentication Bypass
Introduction Hosting control panels operate with near-total authority over a server: websites, databases, DNS, email, and the account lifecycle are all driven from one place. That privilege makes them a high-value target—when a control-plane bug appears, compromise can extend far beyond a single site. CVE-2026-41940 is a pre-authentication bypass affecting WebPros cPanel & WHM (WebHost Manager) and WP2 (WordPress Squared). In practical terms, it lets a remote, unauthenticated attacker reach administrator-level control without supplying valid credentials. Background: What Is cPanel/WHM? cPanel is a widely deployed, Linux-based hosting panel. WHM is the higher-privileged layer used by resellers and server administrators to…
Compliance: Mapping the Coast Guard’s MTSA Cyber Rule to VersaONE
Here is how Versa Unified SASE platform translates 33 CFR Part 101, Subpart F into controls for compliance.
The Ghost in the Leased Line: Unmasking MuddyWater, Surgical Cyber Arm
In the high-stakes theater of global geopolitics, the most effective weapons aren’t always missiles; sometimes, they are just few lines of code.
Closing the Cloud Security Posture Management Gap with Versa CSPM
Today’s environments span multi-cloud infrastructure, SaaS ecosystems, remote endpoints, and an increasing layer of AI-driven applications and integrations. This expansion has introduced a new class of challenges—not just scale, but visibility.
Identity Is the New Perimeter. Stryker Just Taught Us That the Hard Way.
A story on how an Iran-linked group wiped tens of thousands of Stryker’s devices A nation-state attack that changes every assumption we had For years, we have treated nation-state threats as a “Tier 1” problem — something reserved for defense contractors and the energy grid. The March 2026 attack on Stryker Corporation by Iran-linked group Handala officially kills that assumption. On March 11, 2026, Stryker’s corporate Microsoft environment was hit. Employees arrived to find their managed devices wiped out overnight through entirely legitimate Intune commands. Handala claimed 200,000+ systems affected; independent reporting confirms that tens of thousands were impacted. Stryker’s…
Automating Branch-to-Cloud Connectivity and Security: Versa Secure SD-WAN Integration with Zscaler Internet Access
We’re excited to introduce an automated integration between Versa Secure SD-WAN and Zscaler that makes dual-vendor SASE faster, secure and resilient. This integration helps you secure local internet breakout, improve user experience and simplify operations
Why Identity Alone Isn’t Enough: Device Posture in Contextual Zero Trust Security
Identity-based access is incomplete without device posture. Learn how contextual Zero Trust and continuous endpoint profiling reduce standing privilege risk in Dynamic Enterprises.
BrickStorm Malware: Anatomy of a Stealth Linux Backdoor Targeting Modern Infrastructure
BrickStorm is a highly stealthy Linux backdoor designed for long-term, targeted cyber-espionage. Brickstorm is closely associated with Cyber Espionage group UNC5221, which is known for exploiting zero-days vulnerability in network edge appliances like Ivanti, F5 and MiTRE breach. Unlike commodity malware, BrickStorm is deployed post-compromise, operates largely in memory, and uses a modular architecture with custom encrypted command-and-control (C2). Its focus on Linux servers, network appliances, and embedded systems reflects a broader trend: attackers increasingly target infrastructure layers where visibility and detection are weakest.
‘Secure by Design’ at Versa: One Year of Progress
Security is a product decision, not an afterthought. As a further commitment to this principle and as a reflection of our pledge to the CISA Secure by Design goals, over the past year Versa has been putting them into practice across our platform, processes, and programs. Organized below around the seven Secure by Design pledge goals is a summary of the related new capabilities and enhancements we’ve delivered, along with a quick explanation of the importance of the changes.
Industry Insights
Six ways agentic AI will transform networking and security
By Kevin Sheu
VP of Product Marketing
March 23, 2025
Agentic AI network security transforms threat detection, Zero Trust enforcement, and policy management with autonomous agents that accelerate response times. Learn how.
Industry Insights
Shadow AI and data leakage: How to secure generative AI at work
By Rahul Mehta
Product Marketing Analyst
March 16, 2025
Shadow AI data leakage threatens enterprises as 56% of employees use GenAI without oversight. Learn how to secure generative AI with policy and controls.
Industry Insights
How NGFW Fits into Your Zero Trust Strategy
By Brad LaPorte
Strategic Advisor
February 5, 2025
Zero Trust requires organizations to assume that threats can originate from anywhere—both inside and outside the network. This approach emphasizes strict identity verification and continuous monitoring to protect sensitive resources. Advanced security tools, such as Next-Generation Firewalls (NGFWs), play a pivotal role in implementing this strategy. These technologies provide enhanced visibility and granular access control to meet the demands of hybrid and cloud-first environments.
Industry Insights
IoT: New Horizons, New Risks
By Jon Taylor
Director and Principal of Security, Versa Networks
January 7, 2025
The Internet of Things (IoT) offers exciting new opportunities for growth and innovation. From fostering collaboration between organizations to enabling entirely new services, IoT is at the heart of many technological revolutions.
Product & Engineering
Data Protection and Security with Versa’s Endpoint DLP Solution
By Anusha Vaidyanathan
Sr. Director, Product Management
December 10, 2024
Data Protection and Security with Versa’s Endpoint DLP Solution In a hyper-digital and remote-working world, protecting sensitive data has become more critical than ever. Endpoint and network Data Loss Prevention (DLP) work together to provide data visibility and control, safeguarding businesses against potential breaches and compliance risks. For this blog, we’ll focus on the value of endpoint DLP and share some common use cases. Why Endpoint DLP Matters Endpoint DLP, along with network DLP, is an essential component for comprehensive data protection. In modern organizations, data continuously resides on and moves through endpoint devices like laptops, workstations, and mobile phones….
Company Updates
Versa SD-WAN and Microsoft Entra Combine for End-to-End Networking and Security
By Maurice Landrum
Solution Architect
November 19, 2024
Versa and Microsoft have partnered to integrate identity-centric internet access security with intelligent network connectivity. With sophisticated cyberattacks increasing year over year, organizations are scrambling to upgrade their access security and complement it with intelligent and secure transport at the WAN for improved end-to-end protection and performance.
Company Updates
VersaONE – The Future is in Networks that Protect Themselves
By Dan Maier
Chief Marketing Officer, Versa Networks
November 14, 2024
Today, Versa is announcing the VersaONE Universal SASE Platform. VersaONE enables organizations to create self-protecting networks that radically simplify and automate their network and security infrastructure. Powered by AI, the platform delivers converged SASE, SSE, SD-WAN, and SD-LAN solutions that securely connect all users, devices, workloads, and networks through a unified platform.
Company Updates
Versa Achieves Exceptional Results in CyberRatings.org SSE Threat Protection and ZTNA Tests
By Dan Maier
Chief Marketing Officer, Versa Networks
October 24, 2024
In the crowded landscape of cloud-delivered Security Service Edge (SSE), relying on vendor claims of performance and security can often lead to disappointment. Increasingly, enterprises are seeking actual test results to validate the solutions they are considering.
Industry Insights
ISACA Survey Points to Growing Threats and Lack of Automation
By Kevin Sheu
VP of Product Marketing
October 14, 2024
This latest survey is more confirmation that an oft-mentioned reality continues to be true – that the nature of threats keeps advancing and organizations frequently find themselves falling further and further behind. Far and away, the top reason given for increased stress isn’t low budgets or lack of training or failure of company leadership to prioritize security – even though these are among the reasons cited – it’s the “threat landscape is increasingly complex,” listed by 81 percent of respondents, nearly double the next-closest response.
Industry Insights
Protect & Reduce Attack Surface at the Network Edge
By Brad LaPorte
Strategic Advisor
September 12, 2024
Understanding the cyber attack surface Historically, the “attack surface” was limited to well-known points of external exposure—the traditional perimeter of websites, external IP addresses, and endpoints. Our cyber attack surface has expanded dramatically over the past five years, now encompassing our cloud estate, millions of devices at the edge, and mobile and remote workers, in addition to our internet-facing infrastructure. This expansion of the definition to include cloud, end-user, and internal assets has been driven by the increasing sophistication of cyber attacks. The table below breaks down today’s complex attack surface into several categories, based on a framework presented by…
Subscribe to the Versa Blog




