runZero Hour, Ep. 8: Kaspersky Ban, Energy Sector & regreSSHion

Episode 8 of runZero Hour contained a packed agenda covering the latest topics shaping the state of asset security. 

We kicked off our discussion with the impending U.S. ban of Kaspersky products that goes into effect at 12:00 AM EDT on July 20, 2024. Hear our research team’s insights on what this means for security teams and how to use runZero to track down Kaspersky products.

Next, we pivoted to the FBI's recent warnings on increased attacks in the renewable energy sector shedding light on the heightened risk to critical OT/ICS assets. The runZero research team shares insights on how to improve asset visibility and exposure management in the wake of these critical warnings.

We love a diverse batch of vulnerabilities for runZero Hour and this episode did not disappoint! Tune in as we dissect the the Blast-RADIUS vulnerability and the following Rapid Response highlights:

• How to find Siemens devices on your network

• How to find Westermo devices on your network

• How to find Microsoft Message Queuing (MSMQ) servers on your network

• How to find MOVEit file transfer services on your network

• How to find OpenSSH systems on your network

• How to find PKIX-SSH services on your network

We concluded with a recap of the latest runZero features for improved asset discovery: Meraki, semantic version queries, CISA KEV, VulnCheck KEV, and EPSS.