Posts tagged ‘Security’

Intelligent Edge Jun 4, 2026

Resiliency Is the New SLA: Why AI Demands an Always-On Intelligent Edge 

For decades, we’ve measured the network in terms of uptime percentages and bandwidth tiers. In the AI era, those metrics are no longer enough. Resiliency, which is the ability to deliver uninterrupted, any-directional, application-aware connectivity in the face of unpredictable AI workloads, is the new SLA. 

Read More
Industry Insights May 13, 2026

CVE-2026-41940: Inside the cPanel/WHM Authentication Bypass

Introduction Hosting control panels operate with near-total authority over a server: websites, databases, DNS, email, and the account lifecycle are all driven from one place. That privilege makes them a high-value target—when a control-plane bug appears, compromise can extend far beyond a single site. CVE-2026-41940 is a pre-authentication bypass affecting WebPros cPanel & WHM (WebHost Manager) and WP2 (WordPress Squared). In practical terms, it lets a remote, unauthenticated attacker reach administrator-level control without supplying valid credentials. Background: What Is cPanel/WHM? cPanel is a widely deployed, Linux-based hosting panel. WHM is the higher-privileged layer used by resellers and server administrators to…

Read More
Industry Insights May 12, 2026

Compliance: Mapping the Coast Guard’s MTSA Cyber Rule to VersaONE

Here is how Versa Unified SASE platform translates 33 CFR Part 101, Subpart F into controls for compliance.

Read More
Industry Insights May 11, 2026

The Ghost in the Leased Line: Unmasking MuddyWater, Surgical Cyber Arm

In the high-stakes theater of global geopolitics, the most effective weapons aren’t always missiles; sometimes, they are just few lines of code.

Read More
Company Updates May 6, 2026

Closing the Cloud Security Posture Management Gap with Versa CSPM

Today’s environments span multi-cloud infrastructure, SaaS ecosystems, remote endpoints, and an increasing layer of AI-driven applications and integrations. This expansion has introduced a new class of challenges—not just scale, but visibility. 

Read More
Industry Insights Apr 2, 2026

Identity Is the New Perimeter. Stryker Just Taught Us That the Hard Way.

A story on how an Iran-linked group wiped tens of thousands of Stryker’s devices A nation-state attack that changes every assumption we had For years, we have treated nation-state threats as a “Tier 1” problem — something reserved for defense contractors and the energy grid. The March 2026 attack on Stryker Corporation by Iran-linked group Handala officially kills that assumption. On March 11, 2026, Stryker’s corporate Microsoft environment was hit. Employees arrived to find their managed devices wiped out overnight through entirely legitimate Intune commands. Handala claimed 200,000+ systems affected; independent reporting confirms that tens of thousands were impacted. Stryker’s…

Read More
Company Updates Mar 20, 2026

Automating Branch-to-Cloud Connectivity and Security: Versa Secure SD-WAN Integration with Zscaler Internet Access 

We’re excited to introduce an automated integration between Versa Secure SD-WAN and Zscaler that makes dual-vendor SASE faster, secure and resilient. This integration helps you secure local internet breakout, improve user experience and simplify operations 

Read More
Industry Insights Mar 19, 2026

Why Identity Alone Isn’t Enough: Device Posture in Contextual Zero Trust Security

Identity-based access is incomplete without device posture. Learn how contextual Zero Trust and continuous endpoint profiling reduce standing privilege risk in Dynamic Enterprises.

Read More
Research Lab Feb 5, 2026

BrickStorm Malware: Anatomy of a Stealth Linux Backdoor Targeting Modern Infrastructure

BrickStorm is a highly stealthy Linux backdoor designed for long-term, targeted cyber-espionage. Brickstorm is closely associated with Cyber Espionage group UNC5221, which is known for exploiting zero-days vulnerability in network edge appliances like Ivanti, F5 and MiTRE breach. Unlike commodity malware, BrickStorm is deployed post-compromise, operates largely in memory, and uses a modular architecture with custom encrypted command-and-control (C2). Its focus on Linux servers, network appliances, and embedded systems reflects a broader trend: attackers increasingly target infrastructure layers where visibility and detection are weakest.

Read More
Company Updates Jan 30, 2026

‘Secure by Design’ at Versa: One Year of Progress 

Security is a product decision, not an afterthought. As a further commitment to this principle and as a reflection of our pledge to the CISA Secure by Design goals, over the past year Versa has been putting them into practice across our platform, processes, and programs. Organized below around the seven Secure by Design pledge goals is a summary of the related new capabilities and enhancements we’ve delivered, along with a quick explanation of the importance of the changes.  

Read More

Fake Flash Updates Mine Monero Under the Hood

The Versa Team
By The Versa Team
Universal SASE leaders
October 25, 2018

The recent surge in cryptomining is providing cyber criminals with more vectors to attack, at the expense of legitimate users. This year has seen a huge increase in the deployment of numerous malwares, with cryptominers as primary or secondary payloads. Cryptominers are becoming easy targets, that allow attackers to go a step further to disguise themselves as the miner in the form of a flash update. Palo Alto Networks reported a list of collected samples, some dating back to August 2018[1]. The author further adds that installers from the Adobe website were legitimate, and the malicious ones were mostly Windows…

Lateral Movement – Definition, Causes & Protection

Winny Thomas
By Winny Thomas
Principal Security Architect
October 5, 2018

Lateral Movement Definition: Lateral movement is a technique used by cyber attackers to infiltrate and move through a network with the intent of obtaining secure data. The Cause The term “Lateral Movement” has been around for a little over four years and was in the news when ransomware like WannaCry and APT’s like APT28 and APT29 used lateral movement techniques.  Most often an attacker may not have direct access to a machine or resource on the internal network, which the attacker considers a prized trophy. The prized trophy may be the domain controller, a machine hosting confidential information, or the…

GandCrab Ransomware

The Versa Team
By The Versa Team
Universal SASE leaders
October 4, 2018

Ransomware is a form of malicious software that latches onto a system and encrypts the files within it, making them inaccessible to the user. The attackers behind this malicious activity typically demand payment in terms of currency (crypto or cash) in return for the keys to decrypt the files.  A recent ransomware which has become viral since January 2018 is named GandCrab. This ransomware is believed to be distributed as a Ransomware-as-a-Service [2,3]. GandCrab initially differentiated from other ransomware by demanding a ransom in DASH [7] cryptocurrency. The developers behind GandCrab have been continuously updating and releasing improved versions, with…

Secure SD-WAN Helps Manufacturers Deliver the Goods

The Versa Team
By The Versa Team
Universal SASE leaders
August 27, 2018

Every manufacturer is concerned about the potential risks associated with cyber-crimes. If their data are stolen, it can lead to financial losses in sales, fines and monetary judgments against them; not to mention, the loss of customers and brand loyalty. In 2017, there were over 53,000 security incidents and 2,216 confirmed data breaches. This is according to the 2018 Data Breach Investigations Report (DBIR) by Verizon. The report goes on to state, the most common access among all security breaches (73 percent of breaches) are those perpetrated from outside the organizations through the wide area network (WAN). Enterprise WANs, with…

WAN-Edge Protection Vitally Important to Healthcare

The Versa Team
By The Versa Team
Universal SASE leaders
August 22, 2018

Internet links to wide area networks (WANs) are often a primary target for cyber-crime in every industry.  The healthcare industry deals with particularly sensitive consumer data. Security breaches pose many risks for healthcare providers, including legal liability, revenue loss and erosion of patient trust. To minimize the threat of security incidents and breaches, IT teams are looking for preventive measures to ensure that security is an integrated part of the WAN. The preservation and safekeeping of healthcare data for doctors, clinics and hospitals, and their patients are essential elements to contemporary security posture. Patient health record protection has a direct…

Security Breaches are often Network Breaches

The Versa Team
By The Versa Team
Universal SASE leaders
August 6, 2018

Once again, recently we heard about an enterprise that succumbed to a major security breach. Shipping giant COSCO lost email and IP phone connectivity throughout their entire US network. And without finding the cause, the company shut down networks within other regions. This example, along with countless others, solidifies the point that distributed networks and security are inherently symbiotic. COSCO says the incident was a network breakdown that led to the ransomware infection. While some are arguing it was the network, others say it was a Malware security breach. The COSCO event was not only a network breakdown, it was…

Building a Secure Architecture for the Enterprise Edge with SD-WAN

The Versa Team
By The Versa Team
Universal SASE leaders
July 24, 2018

Typically, WAN solution vendors talk about performance in terms of speeds and feeds. But, I like to think about performance as it relates to all aspects of connectivity. This includes speed, control, visibility, reliability, ease of deployment and monitoring, and of course security. I think about it in these terms because each of these areas are controllable by the right holistic SD-WAN architecture. Unfortunately, the accumulation of multiple disparate routing and switching devices, including firewalls, intrusion detection and threat mitigation, makes it difficult to obtain network visibility and correlate real-time events that can degrade or disrupt performance. With Secure SD-WAN,…

FIFA World Cup 2018- Don’t Let Your Enterprise Networks Pay a Penalty

The Versa Team
By The Versa Team
Universal SASE leaders
June 28, 2018

One of the biggest sporting extravaganza of the world is currently on in Russia. The 2018 FIFA World Cup, which commenced on the 14th of June 2018, will see 32 teams compete across 64 games and four adrenaline and emotionally packed weeks in Russia. Let’s begin with some eye-opening statistics. According to a number of sources, the 2014 World Cup was watched by 3.2 billion people worldwide, making it the largest ever in FIFA history. In total, 280 million people watched matches online or through a mobile device. Experts expect that the viewership numbers in 2018 will see an increase…

The Internet of Everything Insecure

The Versa Team
By The Versa Team
Universal SASE leaders
March 20, 2018

“Security by design is a mandatory prerequisite to securing the IoT macrocosm, the Dyn attack was just a practice run.” – James Scott, Sr. Fellow, Institute for Critical Infrastructure Technology. Remember the 21st of October 2016? A series of carefully mastered DDoS attacks paralyzed internet services on the East Coast, affecting the businesses of market giants like Amazon, Netflix, PayPal, Starbucks, Verizon, Visa – the actual list is longer, and pretty impressive. The US Department of Homeland Security launched an investigation and it revealed that the extremely sophisticated attack was a botnet that spread through a large number of Internet…

SD-WAN: Ensuring Optimal Network Performance for Insurance Companies

The Versa Team
By The Versa Team
Universal SASE leaders
December 1, 2017

Like many industries, the insurance sector increasingly depends on new technologies to provide better service while reducing operational costs, with the ultimate goal of creating an exceptional customer experience. Mobile apps, cloud-based services and video chat are just some of the ways insurance companies are using technology to reach their customers and decrease their overhead. Consider, for example, the traditional method of filing a claim for an auto collision: a police report is filed, a copy of which must be forwarded to the claims department of the insurance company; photos of the damage are needed, which means the adjuster must…


Recent Posts













Gartner Research Report

2025 Gartner® Magic Quadrant™ for SASE Platforms

Versa has for the third consecutive year been recognized in the Gartner Magic Quadrant for SASE Platforms and is one of 11 vendors included in this year's report.