Threat briefings
The Attack Surface blog
Short, sourced briefings on the external exposures attackers actually use — written for MSPs and the clients they protect. Updated regularly.
Akira Ransomware Is Hunting Exposed VPNs — Why MSPs Are in the Blast Radius
Akira breaks in through exposed VPNs and RDP, often via known CVEs named in CISA's advisory. Here's why MSPs and SMBs are prime targets — and what's reachable on your edge.
When the Control Panel Is the Front Door: The cPanel & WHM Exposure Problem
A hosting control panel reachable from the open internet is a concentrated attack surface — one panel can fan out to hundreds of sites. Why exposed cPanel/WHM is real risk.
Your Firewall Is on the Internet by Design — And That's the Problem
Firewalls, VPN gateways and SSO portals are internet-facing by design, so their auth-bypass flaws get weaponized fast. A config lifted from one appliance can compromise a whole fleet.
What's exposed on your clients right now?
Run a free external attack-surface analysis — open ports, exposed services, CVEs and email-auth — before an attacker scans them first.
Run the analysis →