Zero-days & AI-driven exploits are an inevitable reality of the modern threat landscape. To better understand your network’s exposures watch "Beyond the Zero-Day: Mapping the network attackers actually see" featuring runZero CEO HD Moore. 🎥 Watch now: runzero.com/resources/beyond…

Are you ready for the "Shadow Era"? Join runZero CEO HD Moore & moderator Terry Sweeney for a timely discussion on the future of defense. Don't be caught in the dark! 💡 Register for the webinar today: dr-resources.darkreading.com… 🗓️ June 16, 2026 at 1PM ET / 10AM PT

Next runZero Hour: Join hosts Tod Beardsley & Brianna Cluck next week to discuss EPSS version 5 with guest Stephen Shaffer! Learn how to level up your risk decisions with EPSS, especially as AI-driven attacks increase. 👉️ Register at: runzero.com/research/runzero…

Interop2026のBest of Show Awardにて 🥈 ninjaone：準グランプリ 🎉 runzero：審査員特別賞 マクニカブース（6F15）でご紹介中です！ プレゼンも実施していますので、ぜひお立ち寄りください✨ #Interop2026 #マクニカ

AIによってバグ探しが大量・高速・低コストになった結果、業界の難所は「脆弱性を見つけること」から、大量の報告から本物を選り分けて素早く修正することへ移りつつあります。バグバウンティと攻撃側から弱点を探すオフェンシブセキュリティの今後を、複数の専門家の見解で検証した論考が公開されました。象徴的なのは、ネットワーク転送ツール「curl」が、AI生成とみられる無価値な報告の急増を理由に、2026年1月に報奨金プラットフォームHackerOneでの有償プログラムを終了したこと。HackerOne自身も3月、発見の急増に修正が追いつかない不均衡を理由にInternet-Bug-Bountyの新規受付を一時停止しています。バグ発見をさらに加速させるとされるAnthropicの非公開AIモデル「Mythos」をめぐる過熱も、この議論を後押ししています。 AIが発見の裾野を広げても、価値ある脆弱性を見抜く判断やビジネスロジックの理解、迅速な修正までは代替しない、というのが専門家に共通する見立て。バグバウンティは消えるのではなく、重要な脆弱性と修正へ焦点を移して再編されていく、との論調です。 【論点の整理】 ・HackerOneのCEOは、発見から悪用までの差はすでに消え、残るのは発見から修正への「運用上の隔たり」だと指摘。AI支援の発見が低〜中程度の脆弱性を大量に生み、開発者側が処理しきれていないとする ・報奨金から距離を置く企業が増える一方、報酬や方針を見直す動きもあり、Googleは4月末にAIを理由としてChromeの報奨金を引き下げ、Androidを引き上げている ・Anthropicは、Mythos-Previewで4月に主要OS・ブラウザで数千のゼロデイを、5月にOSSのスキャンで2万3000件超の潜在的脆弱性を見つけたと公表。ただしIntegrity360のCTOは、その性能が検閲を外したモデル・長時間の計算・大量の再サンプリングに依存し「まだ現実の運用環境の話ではない」と指摘する ・runZeroの研究担当者は「Mythosは革命的ではなく、優れたツールだが買わねば愚かだという触れ込みは典型的なFUD型マーケティング」と評価。発見を自動化しても何を狙うかの判断は人間に残り、当面は「代替ではなく適応」との見方が多い ・もっとも報奨金市場はむしろ拡大しているとの見方もあり、ビジネスロジックやAI特有の脆弱性（プロンプトインジェクション、モデル抽出、敵対的操作）の研究は担い手が少なく報酬が上がるという。AIに頼りすぎない社内チームの価値は残り、外部のハンターが最も影響を受けるとされる 詳細は以下を参照： securityweek.com/will-ai-kil…

Have your air gaps been bypassed or bridged? 🤔 In a recent SANS session, runZero CEO HD Moore reveals the soft exposures attackers love, including those that inadvertently bypass air gaps. 🎥 Watch now to learn how to ID these & other hidden exposures: runzero.com/resources/harden…

Researcher Rob King of runZero was on the #NexusPodcast recently to talk about #OT asset exposures and the importance—and effectiveness—of mitigations such as #segmentation. 🎧 Listen to this episode: hubs.li/Q04kgjf50

🔔 WEBINAR ALERT — Zero-days won’t stop. AI builds exploits in minutes. HD Moore (Metasploit creator and runZero CEO) says stop racing patches. See your network like attackers do. Most teams trust their segmentation until hidden devices, shadow IT, and multi-homed systems connect everything. This session reveals real attack paths and limits what breaches can reach. Secure your spot 👇 thehackernews.com/2026/06/be…

Hello #Infosec2026 attendees! Meet us at Booth E110 for demos & learn how we’re empowering defenders to win by default—even against AI. With runZero know every asset, every attack path, every exposure.🔥 #NIS2 concerns? We can help! 👉️ Read our blog: runzero.com/blog/nis2-prep/

The apex agentic adversary is here. Frontier agentic AI models are radically compressing the time between discovery & exploitation. runZero is exposure management built for the AI-attack era. 👉️ Read our blog to learn more: runzero.com/blog/apex-agenti…

Don't run Nuclei on your printers. (People have learned this the hard way.) Our CEO @ehrishiraj @todb get into this, the bug bounty program, and how time-to-exploit collapsed, all on runZero Day. Check it out: youtube.com/watch?v=798Sy04F…

🎉 New GigaOm Radar for OT Security positions runZero as a Challenger & Fast Mover! 🚩 Webinar: Join GigaOm's Chris Ray & CEO HD Moore on 5/28 @ 12PM ET as they discuss hardening converged network defenses & the #OT Radar findings. Webinar reg & report: runzero.com/gigaom-radar-ot-…

When it comes to OT vulnerabilities, the real challenge lies in the gap between identifying an exposure and mitigating it without disrupting production. 🎙️ On the Nexus Podcast, runZero Director of Applied Research Rob King explains. Listen here → hubs.li/Q04gLW8k0

10/ Coordinated through Tod Beardsley / runZero. CISA VINCE Case VU#579666. Six weeks of negotiating with the vendor. Full report : affected brands, what's patched, and what to do if you own one -> github.com/xn0tsa/nobody-put…

🛑 Stop assuming segmentation & start verifying it with runZero 4.9! runZero 4.9 is here with interactive attack path mapping, deep #OT intelligence, multi-homed and bridge detection, and more! ✅ 👉️ Read our 4.9 release blog today for more info: runzero.com/blog/runzero-4-9

🚨 New runZero 4.9: We got you, defenders! 📈 Attack path mapping 👁️ Multi-homed detection 🗺️ 2D/3D topology maps 🧠 Deep OT intel field-level discovery ✅ Protocol exposures 🔥 Risk prioritization 💻 UI/UX updates 👉️ Release info: runzero.com/blog/runzero-4-9 #OTsecurity

🎥 In a recent CyberRisk TV interview, our CEO HD Moore explains why traditional #OT network segmentation falls short and discusses soon-to-be released runZero capabilities for converged IT/OT environments. 👉 Watch the full interview now! runzero.com/resources/ot-seg…

...In which @hdmoore and I go "full packet-rat" and dig into what @runzero have been developing to support the complicated , fragile, often safety-critical OT and ICS world. If you've ever knocked over a dusty Solaris box with an nmap scan before (and want to understand how to find it without doing that), this one is for you. Sponsored: RunZero accidentally got good at OT - Risky Business Media m.cje.io/4ubHXby

📢 Missed the runZero Day session on #OT Security? Catch the replay now! Our experts discuss securing converged IT/OT networks. Learn why you can't secure what you can't see and how to build resilience from the ground up. ➡️ Watch it today: runzero.com/resources/from-r…

⚡ Starting in 1 hour: runZero Hour! 🔉 1PM ET / 10AM PT - Join Tod Beardsley & Rob King for the runZero Hour as they welcome guest Caroline Wong, author of The AI Cybersecurity Handbook! Topics: the un-bottled AI genie, CVE program, & a trivia contest! youtube.com/watch?v=IzC13UBK…