Podcasts about horizon3

Summary In this insightful episode, Marc Schein interviews Snehal Antani, the CEO and co-founder of Horizon3.ai, about his entrepreneurial journey, the evolution of his company, and the future of cybersecurity. Snehal shares how Horizon3.ai grew from a handful of engineers working in a basement to a cutting-edge firm revolutionizing autonomous penetration testing. He walks listeners through the different startup phases, emphasizing how critical it is to develop a repeatable sales process, retain customers, and build operational excellence at scale. Snehal discusses the complex challenge of preserving organizational culture during rapid growth, highlighting mistakes made during their first hyper-growth phase and the importance of investing in strong, well-indoctrinated management. He explains how a thoughtful approach to onboarding managers as cultural ambassadors ultimately led to a more stable, scalable team. He offers a candid perspective on venture funding—detailing both the pitfalls of dealing with inexperienced investors and the value of bringing on seasoned operators as board mentors. Snehal uses his experience with crises, including the collapse of Silicon Valley Bank and the loss of his father, to underline the importance of developing "muscle memory" within leadership teams. He compares this to special operations units, where preparation and planning allow for excellence under pressure. The episode shifts into technical terrain with a compelling explanation of autonomous penetration testing. Snehal shares how Horizon3.ai developed a system capable of autonomously discovering vulnerabilities and compromising environments without human input—essentially transforming cyber warfare into an algorithmic domain. He compares pen testing to chess, where well-defined opening and closing moves are followed by dynamic midgames. Finally, Snehal forecasts a future in which cyberattacks will be AI-powered and nearly instantaneous. He warns that most current defensive tools are designed for human-centered responses, which will soon be obsolete. As evidence, he cites Horizon3.ai's autonomous agent compromising a bank in under five minutes—twice as fast as the previous year. He predicts the first deepseek-enabled cyberattack within 90 days, calling it a wake-up call for the industry. Key Points Startup Phases: Snehal outlines the four key startup phases: building value, repeatable sales, scaling operations, and achieving operational excellence. Culture During Hypergrowth: The key to scaling culture is hiring the right management and giving them time to assimilate before they scale their teams. Autonomous Pen Testing: Horizon3.ai's agent can autonomously discover and exploit vulnerabilities without human involvement. Crisis Leadership: True leadership is tested during crises; muscle memory and planning are essential for executive teams. AI-Powered Cyber Threats: Snehal predicts that the next wave of cyberattacks will be powered by open-weight AI models capable of adaptive exploitation. Key Quotes "You want to build that muscle memory as a CEO as early as possible… so you can stack excellence upon excellence." "PowerPoint is cheap. YouTube videos are cheap. Let our results do the talking." "My primary competitor is mediocre consultants." "Every defensive tool in the market today is designed for humans at the center—and every one of them will be rendered obsolete." "The future of cyber warfare will be algorithms versus algorithms, and humans by exception." About Our Guest Snehal Antani is the CEO and co-founder of Horizon3.ai, a pioneering cybersecurity company that leverages artificial intelligence to autonomously conduct penetration testing. Before founding Horizon3, Snehal served as the first Chief Technology Officer for the Joint Special Operations Command (JSOC), where he was instrumental in leading initiatives in data analytics, cloud/edge computing,

Snehal Antani is an entrepreneur, technologist, and investor. He is the CEO and Co-founder of Horizon3, a cybersecurity company using AI to deliver Red Teaming and Penetration Testing as a Service. He also serves as a Highly Qualified Expert for the U.S. Department of Defense, supporting digital transformation and data initiatives for Special Operations. Previously, he was CTO and SVP at Splunk, held CIO roles at GE Capital, and began his career as a software engineer at IBM. Snehal holds a master's in computer science from Rensselaer Polytechnic Institute and a bachelor's from Purdue University, and he is the inventor on 16 patents.In this conversation, we discuss:Snehal Antani's path from software engineer to CEO, and how his father's quiet example of grit and passion continues to shape his leadership style.How a “LEGO blocks” approach to building skills prepared Snehal to lead, and why he believes leadership must be earned through experience.Why Horizon3 identifies as a data company, and how running more pen tests than the Big Four creates a powerful AI advantage.What “cyber-enabled economic warfare” looks like in practice, and how a small disruption in a supply chain can create massive global impact.How Horizon3 built an AI engine that hacked a bank in under 60 seconds, showing what's possible when algorithms replace manual testing.What the future of work looks like in the AI era, with a growing divide between those with specialized expertise and trade skills and those without.Resources:Subscribe to the AI & The Future of Work Newsletter: https://aiandwork.beehiiv.com/subscribe Connect with Snehal on LinkedIn: https://www.linkedin.com/in/snehalantani/ AI fun fact article: https://venturebeat.com/security/ai-vs-endpoint-attacks-what-security-leaders-must-know-to-stay-ahead/ On the New Definition of Work: https://podcasts.apple.com/us/podcast/dr-john-boudreau-future-of-work-pioneer-and/id1476885647?i=1000633854079 

Network Infraxploit Our undergraduate intern, Matthew Gorman, wrote up a walk through of CVE-2018-0171, an older Cisco vulnerability, that is still actively being exploited. For example, VOLT TYPHOON recently exploited this problem. https://isc.sans.edu/diary/Network+Infraxploit+Guest+Diary/31844 Windows Update Issues / Windows 10 Update Microsoft updated its "Release Health" notes with details regarding issues users experiences with Windows Hello, Citrix, and Roblox. Microsoft also released an emergency update for Office 2016 which has stability problems after applying the most recent update. https://support.microsoft.com/en-us/topic/april-8-2025-kb5055523-os-build-26100-3775-277a9d11-6ebf-410c-99f7-8c61957461eb https://learn.microsoft.com/en-us/windows/release-health/windows-message-center#3521 https://support.microsoft.com/en-us/topic/april-10-2025-update-for-office-2016-kb5002623-d60c1f31-bb7c-4426-b8f4-69186d7fc1e5 Dell Updates Dell releases critical updates for it's Powerscale One FS product. In particular, it fixes a default password problem. https://www.dell.com/support/kbdoc/en-us/000300860/dsa-2025-119-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities Langflow Vulnerablity (possible exploit scans sighted) CVE-2025-3248 Langflow addressed a critical vulnerability end of March. This writeup by Horizon3 demonstrates how the issue is possibly exploited. We have so far seen one "hit" in our honeypot logs for the vulnerable API endpoint URL. https://www.horizon3.ai/attack-research/disclosures/unsafe-at-any-speed-abusing-python-exec-for-unauth-rce-in-langflow-ai/

I denne måneds udgave af Millionærklubben Eksklusiv zoomer panelet ind på kunstig intelligens som ét af de seneste års helt store investeringstemaer, undersøger om det fortsat vil præge debatten i 2025 og debatterer, om man som investor bør geare op eller ned for AI-relaterede investeringer. Debatten styres af Millionærklubbens faste vært, Bodil Johanne Gantzel, og i panelet kan du møde: Bent Dalager, Head of Innovation & NewTech fra KPMG, Peter Garnry, investor og fast finanskommentator i Millionærklubben, og Henrik Karlsen, CEO og investeringschef hos Horizon3.See omnystudio.com/listener for privacy information.

I denne måneds udgave af Millionærklubben Eksklusiv zoomer panelet ind på kunstig intelligens som ét af de seneste års helt store investeringstemaer, undersøger om det fortsat vil præge debatten i 2025 og debatterer, om man som investor bør geare op eller ned for AI-relaterede investeringer. Debatten styres af Millionærklubbens faste vært, Bodil Johanne Gantzel, og i panelet kan du møde: Bent Dalager, Head of Innovation & NewTech fra KPMG, Peter Garnry, investor og fast finanskommentator i Millionærklubben, og Henrik Karlsen, CEO og investeringschef hos Horizon3.See omnystudio.com/listener for privacy information.

“Techaktier er blevet alt, alt, alt for dyre” Det udsagn er du, kære lytter, helt sikkert stødt på, hvis du har åbnet en finansavis eller bare hørt Millionærklubben det seneste års tid. Men hvis man kradser i overfladen, så ER nogle af de “dyre” teknologiaktier faktisk blevet billigere, og generelt ER der billige lommer i teknologisektoren. Det mener i hvert fald den ene gæst i studiet i dag, Henrik Karlsen, investeringschef i Horizon3. Han tager nogle konkrete aktier med i studiet. Desuden runder vi efterdønningerne fra DeepSeek med Michael Friis, aktiechef i HC Andersen Capital og porteføljeforvalter i Millionærklubben. Vært: Signe TerpSee omnystudio.com/listener for privacy information.

Det er kun fire af verdens 50 største techselskaber, der ligger i Europa. Det faktum kan man græde snot over som europæer. Men som investor kan man vel i bund og grund være lidt ligeglad. For der er masser af techselskaber ude på alverdens børser, og nogle af dem vender vi i denne udgave af Millionærklubben. Det sker med Henrik Karlsen, investeringschef i Horizon3 samt Anders Bæk, privatinvestor og fast porteføljeforvalter i Millionærklubben. Lau Svenssen guider os desuden gennem dagens marked. Vært: Signe Terp Du kan høre mere om:  Aurubis Alibaba Intel Nvidia TSMC Adobe Gitlab Microsoft Nu Holdings See omnystudio.com/listener for privacy information.

In this episode of CISO Tradecraft, host G Mark Hardy is joined by special guest Snehal Antani, co-founder of Horizon3.AI, to discuss the crucial interplay between offensive and defensive cybersecurity tactics. They explore the technical aspects of how observing attacker behavior can enhance defensive strategies, why traditional point-in-time pen testing may be insufficient, and how autonomous pen testing can offer continuous, scalable solutions. The conversation delves into Snehal's extensive experience, the importance of readiness over compliance, and the future of cybersecurity tools designed with humans out of the loop. Tune in to learn how to elevate your cybersecurity posture in a rapidly evolving threat landscape. Horizon3 - https://www.horizon3.ai Snehal Antani - https://www.linkedin.com/in/snehalantani/ Transcripts: https://docs.google.com/document/d/1IFSQ8Uoca3I7TLqNHMkvm2X-RHk8SWpo Chapters: 00:00 Introduction and Guest Welcome 01:43 Background and Experience of Snehal Antani 03:09 Challenges and Limitations of Traditional Pen Testing 14:47 The Future of Pen Testing: Autonomous Systems 23:10 Leveraging Data for Cybersecurity Insights 24:02 Expanding the Attack Surface: Cloud and Supply Chain 24:46 Third-Party Risk Management Evolution 44:37 Future of Cyber Warfare: Algorithms vs. Humans

In this episode we sit down with the Founder/CEO of Horizon3.ai to discuss disrupting the Pen Testing and Offensive Security ecosystem, and building and scaling a security startup - from a founders perspective.From HP, to Splunk to JSOC - all leading to founding Horizon3, Snehal brings a unique perspective of business acumen and technical depth and puts on a masterclass around venture, founding and scaling a team and disrupting the industry!---- For those not familiar with your background who Horizon3AI, can you tell us a bit about both?You are building something special at Horizon3AI and I will dive into that here soon, but you've also been posting some great content about building a security startup, the team, the market dynamics and more, so I wanted to spend a little time chatting about that. - First off, your company was recently listed by Forbes as one of the top 25 venture backed startups likely to reach a $1 billion dollar valuation. How did that feel and what do you think contributed to your team landing on such a prestigious list?- Speaking of venture backed, you recently participated in the Innovators and Investors Summit at BlackHat where you and other panelists dove into the topic of what founders should look for in investors and how VC's can stand out in a highly competitive market. As someone who's navigated that journey and is now being listed on lists such as that from Forbes - what are some of your key lessons learned and recommendations for early-stage founders?- You've stressed the importance of the team over the initial idea and what you've called "pace setters" and "ankle weights" within the team and the importance of both. Can you elaborate on the terms and broader context around building a foundational team to scale the company successfully?- You also have discussed the 4 advantages iconic companies build over time, what are they and why do they help differentiate you?- Pivoting a bit, you have a really unique background, blending both the private and public/defense sector. How do you think that's helped shape you and the way you've build your team and company and approach the market?- Horizon3AI is big on the mantra of "offense informed defense". Why is that critical and why do you think we miss the value in this approach in many spaces in the security ecosystem?- You all have poked some fun at the way many organizations operate, running vuln scans, doing an annual pen test, and having a false sense of security. How is Horizon3AI disrupting the traditional Pen Testing space and leading to more secure organizational outcomes?

In 7 Minutes on ITSPmagazine Short Brand Story recorded on location during Black Hat USA 2024, Sean Martin had a fascinating conversation with Snehal Antani, CEO and Co-Founder of Horizon3.ai. The discussion revolved around the innovative strides Horizon3.ai is making in autonomous penetration testing and continuous security posture management.Snehal Antani shared his journey from being a CIO to founding Horizon3.ai, highlighting the critical gaps in traditional security measures that led to the inception of the company. The main focus at Horizon3.ai is to continuously verify security postures through autonomous penetration testing, essentially enabling organizations to "hack themselves" regularly to stay ahead of potential threats. Antani explained the firm's concept of “go hack yourself,” which emphasizes continuous penetration testing. This approach ensures that security vulnerabilities are identified and addressed proactively rather than reacting after an incident occurs.A significant portion of the discussion centered around the differentiation between application and infrastructure penetration testing. While application pen testing remains a uniquely human task due to the need for identifying logic flaws in custom code, infrastructure pen testing can be effectively managed by algorithms at scale. This division allows Horizon3.ai to implement a human-machine teaming workflow, optimizing the strengths of both.Antani likened its functionality to installing ring cameras while conducting a pen test, creating an early warning network through the deployment of honey tokens. These tokens are fake credentials and sensitive command tokens designed to attract attackers, triggering alerts when accessed. This early warning system helps organizations build a high signal, low noise alert mechanism, enhancing their ability to detect and respond to threats swiftly.Antani emphasized that Horizon3.ai is not just a pen testing company but a data company. The data collected from each penetration test provides valuable telemetry that improves algorithm accuracy and offers insights into an organization's security posture over time. This data-centric approach allows Horizon3.ai to help clients understand and articulate their security posture's evolution.A compelling example highlighted in the episode involved a CISO from a large chip manufacturing company who utilized Horizon3.ai's rapid response capabilities to address a potential vulnerability swiftly. The CISO was able to identify, test, fix, and verify the resolution of a critical exploit within two hours, showcasing the platform's efficiency and effectiveness.The conversation concluded with a nod to the practical benefits such innovations bring, encapsulating the idea that effective use of Horizon3.ai's tools not only promotes better security outcomes but also enables security teams to perform their roles more efficiently, potentially even getting them home earlier.Learn more about Horizon3.ai: https://itspm.ag/horizon3ai-bh23Note: This story contains promotional content. Learn more.Guest: Snehal Antani, Co-Founder & CEO at Horizon3.ai [@Horizon3ai]On LinkedIn | https://www.linkedin.com/in/snehalantani/On Twitter | https://twitter.com/snehalantaniResourcesLearn more and catch more stories from Horizon3.ai: https://www.itspmagazine.com/directory/horizon3aiView all of our OWASP AppSec Global Lisbon 2024 coverage: https://www.itspmagazine.com/owasp-global-2024-lisbon-application-security-event-coverage-in-portugalLearn more about 7 Minutes on ITSPmagazine Short Brand Story Podcasts: https://www.itspmagazine.com/purchase-programsNewsletter Archive: https://www.linkedin.com/newsletters/tune-into-the-latest-podcasts-7109347022809309184/Business Newsletter Signup: https://www.itspmagazine.com/itspmagazine-business-updates-sign-upAre you interested in telling your story?https://www.itspmagazine.com/telling-your-story

In 7 Minutes on ITSPmagazine Short Brand Story recorded on location during Black Hat USA 2024, Sean Martin had a fascinating conversation with Snehal Antani, CEO and Co-Founder of Horizon3.ai. The discussion revolved around the innovative strides Horizon3.ai is making in autonomous penetration testing and continuous security posture management.Snehal Antani shared his journey from being a CIO to founding Horizon3.ai, highlighting the critical gaps in traditional security measures that led to the inception of the company. The main focus at Horizon3.ai is to continuously verify security postures through autonomous penetration testing, essentially enabling organizations to "hack themselves" regularly to stay ahead of potential threats. Antani explained the firm's concept of “go hack yourself,” which emphasizes continuous penetration testing. This approach ensures that security vulnerabilities are identified and addressed proactively rather than reacting after an incident occurs.A significant portion of the discussion centered around the differentiation between application and infrastructure penetration testing. While application pen testing remains a uniquely human task due to the need for identifying logic flaws in custom code, infrastructure pen testing can be effectively managed by algorithms at scale. This division allows Horizon3.ai to implement a human-machine teaming workflow, optimizing the strengths of both.Antani likened its functionality to installing ring cameras while conducting a pen test, creating an early warning network through the deployment of honey tokens. These tokens are fake credentials and sensitive command tokens designed to attract attackers, triggering alerts when accessed. This early warning system helps organizations build a high signal, low noise alert mechanism, enhancing their ability to detect and respond to threats swiftly.Antani emphasized that Horizon3.ai is not just a pen testing company but a data company. The data collected from each penetration test provides valuable telemetry that improves algorithm accuracy and offers insights into an organization's security posture over time. This data-centric approach allows Horizon3.ai to help clients understand and articulate their security posture's evolution.A compelling example highlighted in the episode involved a CISO from a large chip manufacturing company who utilized Horizon3.ai's rapid response capabilities to address a potential vulnerability swiftly. The CISO was able to identify, test, fix, and verify the resolution of a critical exploit within two hours, showcasing the platform's efficiency and effectiveness.The conversation concluded with a nod to the practical benefits such innovations bring, encapsulating the idea that effective use of Horizon3.ai's tools not only promotes better security outcomes but also enables security teams to perform their roles more efficiently, potentially even getting them home earlier.Learn more about Horizon3.ai: https://itspm.ag/horizon3ai-bh23Note: This story contains promotional content. Learn more.Guest: Snehal Antani, Co-Founder & CEO at Horizon3.ai [@Horizon3ai]On LinkedIn | https://www.linkedin.com/in/snehalantani/On Twitter | https://twitter.com/snehalantaniResourcesLearn more and catch more stories from Horizon3.ai: https://www.itspmagazine.com/directory/horizon3aiView all of our OWASP AppSec Global Lisbon 2024 coverage: https://www.itspmagazine.com/owasp-global-2024-lisbon-application-security-event-coverage-in-portugalLearn more about 7 Minutes on ITSPmagazine Short Brand Story Podcasts: https://www.itspmagazine.com/purchase-programsNewsletter Archive: https://www.linkedin.com/newsletters/tune-into-the-latest-podcasts-7109347022809309184/Business Newsletter Signup: https://www.itspmagazine.com/itspmagazine-business-updates-sign-upAre you interested in telling your story?https://www.itspmagazine.com/telling-your-story

In this insightful second episode with Horizon3, Sanj and Paul delve into the complexities of systematic trading and the evolving landscape of the financial markets. The discussion kicks off with a critical look at traditional trading dogmas, emphasizing the importance of diversification and the challenges faced in adapting strategies to the dynamic post-Global Financial Crisis environment. The conversation then pivots to a nuanced analysis of current macroeconomic trends, focusing on the implications of central bank policies, the nuances of inflation, and the need to move beyond conventional wisdom in risk management. As the episode progresses, listeners are treated to an in-depth exploration of Horizon3's unique trading model, highlighting the integration of advanced risk controls, pattern recognition, and digital signal processing. This is followed by a compelling segment on the potential impact of quantum computing on financial markets. The speakers share their macroeconomic outlook, predicting a severe recession and a resurgence of inflation, urging investors to be strategic in their approach. The episode concludes with a teaser about Horizon3's upcoming initiatives and technological innovations, inviting listeners to stay updated through their website and LinkedIn. This podcast is a must-listen for anyone interested in understanding the intricacies of trading and investment in today's rapidly shifting economic landscape. Get in touch with Sanj & Paul from Horizon3: w: https://h3im.com/ li: https://www.linkedin.com/in/stayfrosty/ li: https://www.linkedin.com/in/paulnetherwood/

In this engaging episode of The Algorithmic Advantage, we explore the fascinating world of quantitative trading with experts Sanjeev Lakhanpal and Dr. Paul Netherwood from Horizon3 Investment Management. The discussion highlights Sanjeev's unique journey from physics to finance and Dr. Netherwood's transition from scientific research to trading systems development, illustrating the diverse skill sets in the field. Key focuses include the innovative use of Digital Signal Processing (DSP) to analyse market trends and the integration of adaptive pattern recognition in trading strategies, showcasing Horizon Capital's unique approach to navigating the complex financial markets.   Get in touch with Sanj & Paul from Horizon 3:   w: https://h3im.com/ li: https://www.linkedin.com/in/stayfrosty/ li: https://www.linkedin.com/in/paulnetherwood/

Snehal: Co-founder and CEO of Horizon3, providing autonomous penetration testing capabilities Ex-CTO of Joint Special Operations Command (JSOC) Ex-CTO of Splunk Worked under CIO at GE Capital Worked under CTO at IBM Check out the episode for our conversation about veterans in cybersecurity, how Snehal applied lessons from JSOC to Horizon3, how Snehal thinks about being a late-career founder, and more!horizon3.ai

Én af verdens mest omdiskuterede topchefer sætter sit præg på Millionærklubben onsdag. Panelet går nemlig all in Elon Musk og på investering i Tesla-aktien sammen med journalist og forfatter, Ole Hall, og Tesla-aktionær, Henrik Karlsen fra Horizon3. Med i studiet er også porteføljeforvalter og aktiechef i HC Andersen Capital, Michael Friis Jørgensen, der tager temperaturen på dagens marked. Vært: Bodil Johanne Gantzel.See omnystudio.com/listener for privacy information.

Incredibly, the seemingly simple task of managing corporate-owned devices is still a struggle for most organizations in 2023. Maybe best MDM for Mac doesn't work with Windows, or the best MDM for Windows doesn't work with Mac. Maybe neither have Linux support. Perhaps they don't provide enough insight into the endpoint, or control over it. Whatever the case, security leaders never seem satisfied with their MDM solution and are always investigating new ones. Now, Kolide has stepped in with a unique approach to device management, combining the flexibility and industry support for OSQuery and built to integrate with IdP giant Okta. We discuss Kolide's entrance into the device management space and the current state of MDM - what's wrong with it, and how does Kolide propose to fix it? This segment is sponsored by Kolide. Visit https://securityweekly.com/kolide to learn more about them! Segment description coming soon! Record funding levels over the last two weeks top 2023 and the same time last year. We discuss Palo Alto's plans for the future, CISA's analysis of the LAPSUS$ hacking group, and the uselessness of Quantum Security pitches. Chrome adds the ability to alert users about malicious extensions. A great post from Thinkst has us talking about why vendors (and buyers) need to be careful about default behaviors and documentation. You won't want to miss the excellent squirrel story - a front end for Reddit that looks like Microsoft Outlook. During this segment, Jon will explore today's ransomware economy players from IABS to RaaS affiliates, to money launders and now C2Ps. For the discussion, Jon will leverage Halcyon's latest research, which demonstrates a new technique to uncover how C2Ps, like Cloudzy, are used to identify upcoming ransomware campaigns and other advanced attacks. The research revealed that Cloudzy, knowingly or not, provided services to attackers while assuming a legitimate business profile. Threat actors that leveraged Cloudzy include APT groups tied to the Chinese, Iranian, North Korean, Russian, Indian, Pakistani, and Vietnamese governments; a sanctioned Israeli spyware vendor whose tools are known to target civilians; several criminal syndicates and ransomware affiliates whose campaigns have spurred international headlines. This segment is sponsored by Halcyon. Visit https://securityweekly.com/halcyonbh to learn more about them! In this session, Snehal will discuss several real-world examples of what autonomous pentesting discovered in networks just like yours. You'll hear more about how fast and easy it was to safely compromise some of the biggest (and smallest) networks in the world - with full domain takeover in a little more than a few hours. Learn how you can safely do the same in your own network today!  This segment is sponsored by Horizon3.ai. Visit https://securityweekly.com/horizon3aibh to learn more about them! In this Black Hat 2023 interview, CRA's Bill Brenner and Sophos' John Shier discuss the company's latest research on the Royal ransomware gang. Though Royal is a notoriously closed off group that doesn't openly solicit affiliates from underground forums, granular similarities in the forensics of the attacks suggest all three groups are sharing either affiliates or highly specific technical details of their activities.  This segment is sponsored by Sophos.  Visit https://securityweekly.com/sophosbh to learn more about them! Visit https://www.securityweekly.com/esw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/esw-329

Incredibly, the seemingly simple task of managing corporate-owned devices is still a struggle for most organizations in 2023. Maybe best MDM for Mac doesn't work with Windows, or the best MDM for Windows doesn't work with Mac. Maybe neither have Linux support. Perhaps they don't provide enough insight into the endpoint, or control over it. Whatever the case, security leaders never seem satisfied with their MDM solution and are always investigating new ones. Now, Kolide has stepped in with a unique approach to device management, combining the flexibility and industry support for OSQuery and built to integrate with IdP giant Okta. We discuss Kolide's entrance into the device management space and the current state of MDM - what's wrong with it, and how does Kolide propose to fix it? This segment is sponsored by Kolide. Visit https://securityweekly.com/kolide to learn more about them! Segment description coming soon! Record funding levels over the last two weeks top 2023 and the same time last year. We discuss Palo Alto's plans for the future, CISA's analysis of the LAPSUS$ hacking group, and the uselessness of Quantum Security pitches. Chrome adds the ability to alert users about malicious extensions. A great post from Thinkst has us talking about why vendors (and buyers) need to be careful about default behaviors and documentation. You won't want to miss the excellent squirrel story - a front end for Reddit that looks like Microsoft Outlook. During this segment, Jon will explore today's ransomware economy players from IABS to RaaS affiliates, to money launders and now C2Ps. For the discussion, Jon will leverage Halcyon's latest research, which demonstrates a new technique to uncover how C2Ps, like Cloudzy, are used to identify upcoming ransomware campaigns and other advanced attacks. The research revealed that Cloudzy, knowingly or not, provided services to attackers while assuming a legitimate business profile. Threat actors that leveraged Cloudzy include APT groups tied to the Chinese, Iranian, North Korean, Russian, Indian, Pakistani, and Vietnamese governments; a sanctioned Israeli spyware vendor whose tools are known to target civilians; several criminal syndicates and ransomware affiliates whose campaigns have spurred international headlines. This segment is sponsored by Halcyon. Visit https://securityweekly.com/halcyonbh to learn more about them! In this session, Snehal will discuss several real-world examples of what autonomous pentesting discovered in networks just like yours. You'll hear more about how fast and easy it was to safely compromise some of the biggest (and smallest) networks in the world - with full domain takeover in a little more than a few hours. Learn how you can safely do the same in your own network today!  This segment is sponsored by Horizon3.ai. Visit https://securityweekly.com/horizon3aibh to learn more about them! In this Black Hat 2023 interview, CRA's Bill Brenner and Sophos' John Shier discuss the company's latest research on the Royal ransomware gang. Though Royal is a notoriously closed off group that doesn't openly solicit affiliates from underground forums, granular similarities in the forensics of the attacks suggest all three groups are sharing either affiliates or highly specific technical details of their activities.  This segment is sponsored by Sophos.  Visit https://securityweekly.com/sophosbh to learn more about them! Visit https://www.securityweekly.com/esw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/esw-329

During this segment, Jon will explore today's ransomware economy players from IABS to RaaS affiliates, to money launders and now C2Ps. For the discussion, Jon will leverage Halcyon's latest research, which demonstrates a new technique to uncover how C2Ps, like Cloudzy, are used to identify upcoming ransomware campaigns and other advanced attacks. The research revealed that Cloudzy, knowingly or not, provided services to attackers while assuming a legitimate business profile. Threat actors that leveraged Cloudzy include APT groups tied to the Chinese, Iranian, North Korean, Russian, Indian, Pakistani, and Vietnamese governments; a sanctioned Israeli spyware vendor whose tools are known to target civilians; several criminal syndicates and ransomware affiliates whose campaigns have spurred international headlines. This segment is sponsored by Halcyon. Visit https://securityweekly.com/halcyonbh to learn more about them!   In this session, Snehal will discuss several real-world examples of what autonomous pentesting discovered in networks just like yours. You'll hear more about how fast and easy it was to safely compromise some of the biggest (and smallest) networks in the world - with full domain takeover in a little more than a few hours. Learn how you can safely do the same in your own network today! This segment is sponsored by Horizon3.ai. Visit https://securityweekly.com/horizon3aibh to learn more about them!   In this Black Hat 2023 interview, CRA's Bill Brenner and Sophos' John Shier discuss the company's latest research on the Royal ransomware gang. Though Royal is a notoriously closed off group that doesn't openly solicit affiliates from underground forums, granular similarities in the forensics of the attacks suggest all three groups are sharing either affiliates or highly specific technical details of their activities. This segment is sponsored by Sophos. Visit https://securityweekly.com/sophosbh to learn more about them! Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-329 

During this segment, Jon will explore today's ransomware economy players from IABS to RaaS affiliates, to money launders and now C2Ps. For the discussion, Jon will leverage Halcyon's latest research, which demonstrates a new technique to uncover how C2Ps, like Cloudzy, are used to identify upcoming ransomware campaigns and other advanced attacks. The research revealed that Cloudzy, knowingly or not, provided services to attackers while assuming a legitimate business profile. Threat actors that leveraged Cloudzy include APT groups tied to the Chinese, Iranian, North Korean, Russian, Indian, Pakistani, and Vietnamese governments; a sanctioned Israeli spyware vendor whose tools are known to target civilians; several criminal syndicates and ransomware affiliates whose campaigns have spurred international headlines. This segment is sponsored by Halcyon. Visit https://securityweekly.com/halcyonbh to learn more about them!   In this session, Snehal will discuss several real-world examples of what autonomous pentesting discovered in networks just like yours. You'll hear more about how fast and easy it was to safely compromise some of the biggest (and smallest) networks in the world - with full domain takeover in a little more than a few hours. Learn how you can safely do the same in your own network today! This segment is sponsored by Horizon3.ai. Visit https://securityweekly.com/horizon3aibh to learn more about them!   In this Black Hat 2023 interview, CRA's Bill Brenner and Sophos' John Shier discuss the company's latest research on the Royal ransomware gang. Though Royal is a notoriously closed off group that doesn't openly solicit affiliates from underground forums, granular similarities in the forensics of the attacks suggest all three groups are sharing either affiliates or highly specific technical details of their activities. This segment is sponsored by Sophos. Visit https://securityweekly.com/sophosbh to learn more about them! Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-329 

In this Their Story podcast episode, as part of our Black Hat USA conference coverage, host Sean Martin connects with Snehal Antani to discuss proactive security and autonomous pentesting. Snehal shares his expertise on the importance of blue teams proactively verifying their security posture and fixing exploitable vulnerabilities on their own terms and timeline. He emphasizes the need for a bias for action and highlights the value of offense informing defense.The conversation digs into how Horizon3.ai's technology helps blue teams automate specific workflows, such as account resets and incident response processes. Snehal explains how the platform can be used to tune security controls and improve overall effectiveness. He discusses the impact of Horizon3.ai on the cybersecurity skills and expertise of its users, allowing them to focus on more challenging and creative aspects of ethical hacking.Snehal also explores the role of storytelling in cybersecurity, particularly when communicating with executive teams and the board. They discuss the importance of framing cybersecurity issues in the language of business continuity and uptime, making the impact tangible and relatable to board members.The discussion provides practical insights and strategies for improving security posture and effectively communicating its importance to executive stakeholders. Snehal emphasizes the need for organizations to be proactive and take immediate action to remediate vulnerabilities. Also highlighted is the value of understanding the art of attack in order to become better defenders.Overall, this episode offers a thought-provoking conversation on proactive security, autonomous pen testing, and the evolving role of security practitioners. It provides practical insights and strategies for improving security posture and effectively communicating its importance to executive stakeholders.Note: This story contains promotional content. Learn more: https://www.itspmagazine.com/their-infosec-storyGuest: Snehal Antani, Co-Founder & CEO at Horizon3.ai [@Horizon3ai]On LinkedIn | https://www.linkedin.com/in/snehalantani/On Twitter | https://twitter.com/snehalantaniResourcesLearn more about Horizon3.ai and their offering: https://itspm.ag/horizon3ai-bh23For more Black Hat USA 2023 coverage: https://itspmagazine.com/black-hat-usa-2023-cybersecurity-event-coverage-in-las-vegasAre you interested in telling your story?https://www.itspmagazine.com/telling-your-story

In this Their Story podcast episode, as part of our Black Hat USA conference coverage, host Sean Martin connects with Snehal Antani to discuss proactive security and autonomous pentesting. Snehal shares his expertise on the importance of blue teams proactively verifying their security posture and fixing exploitable vulnerabilities on their own terms and timeline. He emphasizes the need for a bias for action and highlights the value of offense informing defense.The conversation digs into how Horizon3.ai's technology helps blue teams automate specific workflows, such as account resets and incident response processes. Snehal explains how the platform can be used to tune security controls and improve overall effectiveness. He discusses the impact of Horizon3.ai on the cybersecurity skills and expertise of its users, allowing them to focus on more challenging and creative aspects of ethical hacking.Snehal also explores the role of storytelling in cybersecurity, particularly when communicating with executive teams and the board. They discuss the importance of framing cybersecurity issues in the language of business continuity and uptime, making the impact tangible and relatable to board members.The discussion provides practical insights and strategies for improving security posture and effectively communicating its importance to executive stakeholders. Snehal emphasizes the need for organizations to be proactive and take immediate action to remediate vulnerabilities. Also highlighted is the value of understanding the art of attack in order to become better defenders.Overall, this episode offers a thought-provoking conversation on proactive security, autonomous pen testing, and the evolving role of security practitioners. It provides practical insights and strategies for improving security posture and effectively communicating its importance to executive stakeholders.Note: This story contains promotional content. Learn more: https://www.itspmagazine.com/their-infosec-storyGuest: Snehal Antani, Co-Founder & CEO at Horizon3.ai [@Horizon3ai]On LinkedIn | https://www.linkedin.com/in/snehalantani/On Twitter | https://twitter.com/snehalantaniResourcesLearn more about Horizon3.ai and their offering: https://itspm.ag/horizon3ai-bh23For more Black Hat USA 2023 coverage: https://itspmagazine.com/black-hat-usa-2023-cybersecurity-event-coverage-in-las-vegasAre you interested in telling your story?https://www.itspmagazine.com/telling-your-story

On this episode of Embedded Insiders, Syed Alam, High Tech Industry Global Lead at Accenture, examines the connection and integration of digital twins in an “industrial metaverse,” and how companies and engineers can get started creating their own factory floor metaverse.Next, we're exploring the exploited Apache Superset Data Visualization & Exploration Tool, popularized on GitHub and uncovered by the Horizon3.ai research team, in our Exploited series. How did this happen? I'll give you a hint, the attackers used a SECRET_KEY. But first, the Insiders discuss the widely-discussed, used, and anticipated growth of the artificial intelligence chatbot, ChatGPT. Released in November 2022, the chatbot has now spanned across various industries, which further raises concerns surrounding AI and how it is impacting government, education, and multiple business sectors. But is it for better or for worse?

Spritnye ordretal fra cement- og mineudstyrsgiganten FLSmidth lever ikke op til investorernes forventninger, og heller ikke NKT synes at brillere onsdag morgen, hvor selskabets guidence er meldt ud til den skuffende side. Millionærklubben tager temperaturen på de to aktiers kursudvikling og taler med CFO i FLS, Roland Andersen. Med i studiet er Henrik Karlsen, disruption- og innovationsspecialist, fra fonden Horizon3, der går benhårdt efter compounder-aktier i tech-miljøet. Dagens marked serveres af klubbens porteføljeforvalter, Michael Friis Jørgensen, med Bodil Johanne Gantzel ved roret som vært. See omnystudio.com/listener for privacy information.

In this episode, I chat with Snehal Antani, the Founder of Horizon3, a software company that mission is to help companies find and fix attack vectors before attackers can exploit them. Horizon 3 has raised $38.5 million to date.Horizon3 was founded in 2019, as a cybersecurity firm delivering autonomous Pentesting to help companies proactively find and fix vulnerabilities before criminals exploit them. If you like our podcast, please don't forget to subscribe and support us on your favorite podcast players. We also would appreciate your feedback and rating to reach more people.We recently launched our new newsletter, Principles Friday, where I share one principle that can help you in your life or business, one thought-provoking question, and one call to action toward that principle. Please subscribe Here.It is Free and Short (2min).

NodeZero is a product that enables the channel to really take advantage of the security threats highlighted by the pandemic. This real-time continuously on autonomous pentesting and continuously learning AI technology proactively identifies and fixes internal and external attack vectors before attackers can exploit them. Jennifer Lee The best part of this technology is that it is only sold through the channel. Horizon3.ai wants to continue developing the channel and is looking for national partners as well. Benefits include: Deal protection and increased margins New Partner Certification Trainings Sales and Technical Resources New Incentives Marketing Opportunities Listen in to Jennifer Lee as she provides a very good overview of the product and the channel.  This is one product you will want to add to your portfolio! Autonomous pentesting enables organizations to see themselves through the eyes of the attacker. With this attacker's perspective, enterprises can continuously identify their ineffective security controls and identify critical, exploitable weaknesses that they must immediately fix. However, autonomous pentesting is only part of the equation. Their larger vision is to leverage their expertise, data, and insights to build an autonomous defense designed to be humans by exception. They will deliver continuous attack, paired with continuous defense–executing an integrated learning loop that gets smarter with every interaction, delivered as an Autonomous Security Platform. The Cyber Terrain Map, the knowledge graph at the heart of Horizon3.ai's autonomous pentesting platform, is the critical data structure required to build autonomous security. With every pentest executed, these knowledge graphs get smarter – increasing its understanding of how an attacker can chain together harvested credentials, misconfigurations, dangerous product defaults, and exploitable vulnerabilities to compromise a system. Collective intelligence services analyze these insights and further optimize the attack algorithms. Thus, the more autonomous pentests they run, the richer their collective intelligence becomes, which leads to more efficient & effective attack algorithms. For more information, go to: https://www.horizon3.ai/

In this episode, Snehal Antani, CEO at Horizon3, joins us to discuss the journey from business idea to successful business operations. It all begins with identifying a niche enough problem that you can provide a unique solution, yet one that's widespread enough that enough people need your unique solution. From there, it's deeply about storytelling. You have to tell a compelling and layered story about your product and build cohesion in brand voice and problem-solving. Once a customer is drawn in by a story, then, they need to be sold on credibility. So the next phase of storytelling involves the right storytellers - brand ambassadors and salespeople with industry cred - and the right audience. Do the people you're telling these stories fit your criteria?We also talk about scaling sales and all that entails. You can't be the only run pitching and driving, or you hit a plateau. So how you set others up in your company to learn the ropes and keep on telling those important stories is going to play a big part in your future growth.How do you tell your product's story? How are you getting in front of - and connecting with - the right customers? What are your plans to scale and are you prioritizing consistency? We address all these questions and more in today's episode.If you are a sales leader at a startup, or you're in the sales team, and you're searching for your repeatable scalable sales process to grow sales faster, then please get in touch with me at andrew@unstoppable.do or you can also go to my site at www.unstoppable.do.Sign up for our newsletter (https://www.salesbluebird.com)We want your questions and topic suggestions for future episodes. Send them to  andrew@unstoppable.do or send us a voice/video at https://zipmessage.com/unstoppableSupport the showYou'll Learn:Deciding on a focused solutionThe importance of storytelling and the storytellerHow to figure out who - and who NOT - to sell toHow to scale by setting up systems and prioritizing qualitySupport the show

[Referências do Episódio] - Verizon's Data Breach Investigations Report - https://www.verizon.com/business/resources/reports/dbir/ - Horizon3 dizendo que reproduziu a exploração da CVE-2022-22972 - https://twitter.com/Horizon3Attack/status/1528935531333177344 - Mais sobre a CVE-2022-22972 - https://www.vmware.com/security/advisories/VMSA-2022-0014.html - Chaos Yashma - https://blogs.blackberry.com/en/2022/05/yashma-ransomware-tracing-the-chaos-family-tree - Bibliotecas populares de Python e PHP seqüestradas para roubar chaves AWS - https://www.bleepingcomputer.com/news/security/popular-python-and-php-libraries-hijacked-to-steal-aws-keys/ - Falhas no Screencastify - https://palant.info/2022/05/23/hijacking-webcams-with-screencastify/ - Atualizações do Zoom - https://thehackernews.com/2022/05/new-zoom-flaws-could-let-attackers-hack.html [Ficha técnica] Roteiro e apresentação: Carlos Cabral Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

In today's podcast we cover four crucial cyber and technology topics, including: 1.Exploit for Big-IP flaw released 2.Caramel providing skimmers for increased customer base 3.Criminals deploy crypto investing scheme with fake Musk videos 4.Costa Rica declares state of emergency after Conti Attacks I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

In this episode of The CyBUr Guy Podcast I have a great conversation with Snehal Antani, Founder of Horizon3 and former CTO of Joint Special Operations Command and Splunk.  It is a great conversation on leadership, cybersecurity, and life.  This is the one episode you should share with friends.  Thanks for listening. Feel free to contact me at darren@thecyburguy.com or follow me at linkedin.com/in/darrenmott.  

In today's episode, we will be talking with our good friend, Tony Pillitiere. He is the CTO and Co-Founder of Horizon3.ai, an amazing company whose mission is to help you find and fix attack vectors before attackers can exploit them. For more information go to https://horizon3.ai/. At Tech & Main, we want to be YOUR technology partner. Let our 20+ years of expertise help you achieve the outcomes that are best for your business: cybersecurity, cloud, SD-WAN and data center. We have engineers and project managers available to assist you. Call our office at 678-575-8515, email us at info@techandmain.com or visit us at www.techandmain.com. --- Send in a voice message: https://anchor.fm/techandmain/message

All links and images for this episode can be found on CISO Series CISOs agree that multi-factor authentication is the one security control that once deployed has the greatest impact to reduce security issues. Yet with all that agreement, it's still so darn hard to get users to actually use it. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson. Our guest is Arvind Raman (@arvind78), CISO, Mitel. Huge thanks to our sponsor, Horizon3.ai See your enterprise through the eyes of the attacker, identify your ineffective security controls, and ensure your limited resources are spent fixing problems that can actually be exploited. More from Horizon3.ai. In this episode: If MFA is so great, why is it not more widespread? Are high valuations for cloud security startups a vote against cloud providers doing cloud security well? What is the biggest challenge in deploying zero trust on existing infrastructure? Are there universal security red flags?

Snehal Antani joins us from Horizon3.ai to talk about pentesting, red teaming and why not every vulnerability necessarily needs to be patched. He also shares some great advice for people entering the field.– Download our ebook, Developing cybersecurity talent and teams: https://www.infosecinstitute.com/ebook – View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast0:00 - Intro2:12 - Origin story4:12 - Using your hacking powers for good7:14 - Working up the IBM ranks12:18 - Cloud problems14:25 - Post-IBM days16:50 - Work with the DOD20:33 - Why did you begin Horizon3.ai?24:38 - Vulnerabilities: not always exploitable29:46 - Strategies to deal with vulnerabilities33:36 - Sensible use of a security team35:29 - Advice for red and blue team collaboration39:14 - Pentesting and red teaming career tips41:12 - Demystifying red and blue team45:40 - How do you become intensely into your work47:24 - First steps to get on your career path49:49 - How to learn more about Horizon3.ai50:42 - OutroAbout InfosecInfosec believes knowledge is power when fighting cybercrime. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and privacy training to stay cyber-safe at work and home. It's our mission to equip all organizations and individuals with the know-how and confidence to outsmart cybercrime. Learn more at infosecinstitute.com.

Snehal Antani, the Co-founder and CEO of Horizon3.ai, joined Technado this week to discuss penetration testing-as-a-service. He also talked about the important distinction between vulnerable and exploitable in cybersecurity. In the news, the team covered Microsoft's new Windows 365, the Linux kernel cutting IDE support, Google Drive replacing Backup and Sync with Drive File Stream, and Gmail deploying BIMI security. Finally, in Deja News, Don's prediction of a Microsoft distro of Linux came true with CBL - Mariner.

Snehal Antani, the Co-founder and CEO of Horizon3.ai, joined Technado this week to discuss penetration testing-as-a-service. He also talked about the important distinction between vulnerable and exploitable in cybersecurity. In the news, the team covered Microsoft's new Windows 365, the Linux kernel cutting IDE support, Google Drive replacing Backup and Sync with Drive File Stream, and Gmail deploying BIMI security. Finally, in Deja News, Don's prediction of a Microsoft distro of Linux came true with CBL - Mariner.

This week on DisrupTV, we interviewed Michael Saylor, Chairman at MicroStrategy, Snehal Antani, Co-Founder & CEO of Horizon3.ai and Cecilia Flores, Founder and COO at Webee. DisrupTV is a weekly Web series with hosts R “Ray” Wang and Vala Afshar. The show airs live at 11:00 a.m. PT/ 2:00 p.m. ET every Friday. Brought to you by Constellation Executive Network: constellationr.com/CEN.