We orchestrate many scanners results at Faraday into the same pipeline. This is how the process starts, but then we devote some time to deciding the importance or urgency of a vulnerability for our company. …

Watch our researcher’s live talk in our YouTube channel By 2023, the number of devices connected to IP networks will be more than three times the number of people worldwide. Moreover, more people are working from home due to the pandemic. Because of this, the security of a company’s network also depends on the security of the home network…

Our cybersecurity researchers devote time to reporting vulnerabilities in open-source projects we use every day, but our interests are also linked with IoT, pervasive products that are part of our life. So far, so long, these are the CVEs we reported this year. …

When it comes to seeking vulnerabilities, we are professionals at it. It is in our DNA. We have a history of looking for vulns and there are certainly quite a few that we are very proud of. This time, our team’s latest discovery went big and made it to DEFCON…

Credentials on EC2 Instances If you ever developed any web application with a certain degree of complexity you must have realized that at some point you also need to store credentials, tokens, secrets, and sensitive information on these applications. In an AWS environment, these applications usually run in EC2 instances…

A programmer is close to a deadline and must work fast. For this one time, they choose to skip certain security protocols. They promise not to do so again but fail to accomplish it. A rapidly growing business must choose where to locate its budget. They may continue developing their…

A talk with our Red Team lead, Gabriel Franco Hi Gabriel! We’d like to know more about your background and journey at Faraday Security. How did you enter the cybersecurity world, and what do you enjoy the most about it? -I sometimes define myself as a failed soccer player. When…

Are you trying to improve your security posture on AWS? Read the following recommendations and tips below to avoid these common cloud security issues. This top 5 has been created by our Security Consulting team, based on real-world experience from diverse assessments performed during the last years. 1. Logging One…

What XKCD passwords comic teaches us about security as a whole Passwords are the first aspect of computer security we think about (and for plenty of people, the only one). …