Featured content

Varonis Threat Labs discovered and disclosed two attack vectors on Okta's identity suite: CrossTalk and Secret Agent.

See how automating least privilege cuts hidden access risks and strengthens security across growing cloud environments.

Understand how a customizable DSPM dashboard helps track sensitive data exposure, misconfigurations, and identity risk across cloud environments.

The real story behind today’s breaches is never about an isolated bad decision—it’s about the many decisions made long before a sleepy network administrator gets a call from an attacker.

Varonis Threat Labs found a SQL injection vulnerability and a logical access flaw in Zendesk Explore, the reporting and analytics service in the popular customer service solution, Zendesk.

Explore the process the Varonis Incident Response team follows to investigate NTLM Brute Force attacks, which are common incidents reported by customers.

You don’t have to use Internet Explorer for its legacy to have left you vulnerable to LogCrusher and OverLog, a pair of Windows vulnerabilities discovered by the Varonis Threat Labs team.

Discover how to leverage Varonis data risk insights with Cortex XSOAR to accelerate investigations.

Insecure Direct Object References (IDOR) are common, potentially devastating vulnerabilities resulting from broken access control in web applications.

Use this guide to learn about Azure managed identities: What they are, how many types there are, and what benefits they offer, plus how they work.

Version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS) is right around the corner. Prepare with our PCI DSS compliance checklist.

Varonis can help you scan your environments for rogue secrets exposed in files and code stored on-prem and in the cloud.