Qualys
@qualys
The pioneer and leading provider of disruptive cloud-based security, compliance and IT solutions.
Attackers are using #AI‑powered cloaking services to hide malicious sites, showing harmless content to scanners while serving malware to users. Mayuresh Dani of @Qualys warns this marks a critical shift in the threat landscape. Read the @Forbes analysis: bit.ly/46YptTt
We’re nominated for 2 Pwnie Awards: Epic Achievement & Best RCE – a testament to the great work of the @Qualys Threat Research Unit (TRU). These nominations highlight our dedication to delivering threat research that strengthens cyber resilience globally. bit.ly/44Lci78
At #BHUSA, Richard Seiersen's keynote address, “Is your CTEM Money-Minded?” reveals how the Risk Operations Center (#ROC) empowers unified risk management across security, finance, & business, to drive smarter decisions. Join us at Black Hat main stage: bit.ly/3U2MmgS
Join Himanshu Kathpal to explore the latest in @Qualys Software Composition Analysis (SwCA). See how SwCA connects open-source risks with runtime behavior & business context to strengthen supply chain security, streamline DevSecOps, & enhance compliance: bit.ly/44y9ev5
#Cybersecurity is still seen as an IT issue. A recent @Qualys study with @DarkReading found only 22% of companies include finance teams in #CyberRisk discussions. Security must be risk-centric – rooted in financial, operational & regulatory context: bit.ly/4o2OqmU
We couldn't be more proud of the @Qualys Threat Research Unit (TRU); they were nominated for best research in two Pwnie Award categories!
We are very happy to announce the nominees for the 2025 Pwnie Awards! As a reminder, we will be presenting the winners at DEF CON this year. Saturday the 9th, 10:00AM Main Stage. Hope to see you there! docs.google.com/document/d/1fy…
.@MsftSecIntel released patches for CVE-2025-53770, a SharePoint Server vulnerability exploited in a large-scale campaign. Successful exploitation may allow remote attackers to execute arbitrary code. More info & mitigation steps here: bit.ly/40zj65k #ThreatProtection
.@Qualys Core 3.0.0 & VMDR 3.0.1 are compatible with @ServiceNow Yokohama, ensuring seamless integration for continuous security. The new @Qualys Policy Audit app on the ServiceNow store enables automated compliance remediation. Learn more in the blog: bit.ly/4o1MPOh
CrushFTP disclosed active exploitation of a zero-day vulnerability, letting attackers gain admin access via HTTPS. Over 250,000 instances are exposed, with threat actors deploying malicious code using old exploit scripts. Learn more: bit.ly/4lFWlFh #ThreatProtection
In the cloud, attackers strike in real time. Join us on July 24 to explore a risk-first approach to container runtime security. Learn to detect threats with eBPF-powered precision, correlate signals with asset risk, & respond faster – without the noise: bit.ly/3UclRpH
The @CISAgov added four bugs to its Known Exploited Vulnerabilities catalog, pointing out that they date back to at least 2014. “Organizations should not assume that only new vulnerabilities are being targeted,” said @qualys' Mayuresh Dani. #infosec bit.ly/4kutB0O
.@MsftSecIntel issued an emergency update for 2 critical SharePoint CVEs, including an exploited zero-day. These flaws let attackers run code & exfiltrate data. The @Qualys Enterprise TruRisk™ Platform helps spot vulnerable instances & enable remediation: bit.ly/4lYQZEE
Scattered Spider is targeting the aviation & transportation sectors, using known CVEs to gain access & deploy ransomware. @Qualys’ review of 600k airline assets shows broad exposure, risky open ports, and outdated software. Learn how to mitigate the risk: bit.ly/4lBIiQU
We are excited to welcome May Mitchell as @Qualys’ new Chief Marketing Officer. An award-winning cybersecurity leader with 25+ years of experience, May will lead our global marketing efforts to drive growth and strengthen market presence. bit.ly/4eY3sGF #LifeAtQualys
.@VMware patched several high‑severity CVEs in ESXi, Workstation, Fusion and VMware Tools that could allow remote code execution. Review affected versions and mitigation guidance in this blog: bit.ly/40ZmdDF #ThreatProtection #VulnerabilityManagement
Join Himanshu Kathpal for an webinar on the latest advancements in @Qualys Software Composition Analysis (SwCA). Discover how SwCA enhances supply chain security by connecting open-source risks to runtime behavior and business context. Register today: bit.ly/44y9ev5
That’s a wrap on @Qualys Cyber Risk Conference Brazil! Discussions explored the shift to Risk Surface Management, the power of the Risk Operations Center (ROC) & strategies for Cloud Security. Thank you to all who joined us to reimagine how cybersecurity drives business value.
At the Cyber Risk Conference Brazil, @Qualys CEO Sumedh Thakar traces the shift from Attack Surface Management to Risk Surface Management. Learn how a continuous, risk‑driven approach aligns security with business objectives and builds resilience. bit.ly/44x3nWJ
@Qualys is hosting the Cyber Risk Conference in Brazil, where security leaders explore evolving threats, regulatory challenges, & how the Risk Operations Center (#ROC) aligns security with business priorities. Learn to drive smarter, risk-based decisions: bit.ly/44x3nWJ
On Open Enrollment Day, #TeamQualys chose plans tailored to their health & wellness goals. The event featured chair massages, blood pressure checks & delicious food. At @Qualys, we’re dedicated to fostering a workplace where employee care goes above and beyond! #LifeAtQualys
