Censys

@censys@infosec.exchange
220 Followers
22 Following
172 Posts
Censys’ mission is to be the one place to understand everything on the internet. Frustrated by the lack of trustworthy Internet intelligence, we set out to create the industry's most comprehensive, accurate, and up-to-date map of the Internet. Today, Censys delivers real-time Internet intelligence and actionable threat insights to global governments, over 50% of the Fortune 500, and leading threat intelligence providers worldwide. Learn more at Censys.com.
Websitehttps://censys.com/
Censys Searchhttps://search.censys.io/
Censys1d ago
CISA's SCuBA reminds us: strong government cloud security starts with strong fundamentals. 🔐 Censys' lead federal solutions engineer calls for a return to basics in a brand new Federal News Network article.
https://federalnewsnetwork.com/commentary/2025/04/securing-federal-cloud-environments-cisa-scuba-reminds-cloud-service-providers-of-the-basics/
Securing federal cloud environments: CISA SCuBA reminds cloud service providers of the basics

These steps are essential for maintaining strong cybersecurity hygiene and preventing many of the attacks organizations face today.

Federal News Network
Censys2d ago
The botnets 👾 out there; you just have to know how to grab them. We know how to grab them. Together with @greynoise, we've brought threat hunting to the next level. https://censys.com/blog/hunting-botnets-with-cursorai-greynoise-censys-and-censeye
Hunting Botnets With CursorAI, GreyNoise, Censys, and Censeye

Threat hunting is made easier and simpler by combining the power of Censys, GreyNoise, CursorAI, and Censeye.

Censys
CensysApr 17
👀 It has been quite a wild week in the land of CVEs. Get the Censys research team perspective in our latest blog, "Now You CVE, Now You Don't: How the MITRE CVE Program Nearly Went Dark". https://censys.com/blog/now-you-cve-now-you-dont-how-the-cve-program-nearly-went-dark
Now You CVE, Now You Don't: How the MITRE CVE Program Nearly Went Dark

The MITRE CVE program nearly lost its funding from CISA, showing a fragility in the internet's infrastructure.

Censys
CensysApr 14

“Salt Typhoon will happen again unless we make radical changes."

https://censys.com/blog/salt-typhoon-attacks-highlight-need-for-advanced-defenses

Salt Typhoon Attacks Highlight Need for Advanced Defenses

The Salt Typhoon attacks on critical infrastructure show the need for better threat hunting.

Censys
CensysApr 10
🆕 April 10 Advisory: Vulnerability in FortiSwitch Allows Unauthenticated Attackers to Change Admin Passwords [CVE-2024-48887] https://censys.com/advisory/cve-2024-48887
FortiSwitch Admin Password Change Vulnerability (CVE-2024-48887)

Learn about FortiSwitch vulnerability that allows attackers to change admin passwords. Read how to query for exposed devices that are potentially vulnerable.

Censys
CensysApr 9
Two critical vulnerabilities have dominated the security conversation this week: Ivanti Connect Secure CVE-2025-22457 and CrushFTP CVE-2025-31161. Censys security researcher Jackson Rolf explains the details of the two flaws and how attackers are exploiting them. Watch here: https://www.youtube.com/watch?v=9DEeWwou7wY
The Big Story: Ivanti CVE-2025-22457 and CrushFTP CVE-2025-31161

YouTube
CensysApr 4
In a brand new blog post, the Censys research team talks about the tactics behind the new Lucid phishing-as-a-service (PhAAS) platform driving the toll scam texting campaigns 📱 https://censys.com/blog/lucid-phishing-platform-drives-toll-scam-campaigns
Lucid Phishing Platform Drives Toll Scam Campaigns

Discover how the Lucid phishing framework is driving the E-ZPass toll fraud SMS scams

Censys
CensysApr 3

🔬 New research team updates. See the newest security advisory for this week.

April 1 Advisory: Arbitrary File Read Vulnerability in NAKIVO Backup & Replication Added to CISA KEV https://censys.com/advisory/cve-2024-48248

April 1 Advisory: Arbitrary File Read Vulnerability in NAKIVO Backup & Replication Added to CISA KEV [CVE-2024-48248]

CVE-2025-29927 is a critical Next.js vulnerability enabling attackers to bypass middleware-based authorization in versions 11.1.4 to 15.2.2. Learn how it works and how to protect your app—read the full post for details.

Censys
CensysApr 2

🚀 Big news: The new Censys is here! Our evolved brand reflects the global leader we’ve become—trusted by Fortune 500s & governments worldwide.

Check out our bold new look at www.censys.com 👀

And stay tuned… we’ve got more to reveal at RSAC. 🔍 #Cybersecurity #ThreatHunting #AttackSurfaceManagement #RSAC

Censys | Internet Visibility and Intelligence

Censys empowers security teams with the most comprehensive, accurate, and up-to-date map of the internet to defend attack surfaces and hunt for threats.

Censys
CensysMar 31
DennisMar 26
Very cool context and research from @censys on those #kubernetes IngressNightmare bugs that dropped yesterday.
https://censys.com/ingress-nightmare/
IngressNightmare: Kubernaughty Kubernetes

Censys