Many unpatched servers exposed to the internet remain a prime attack surface for threat actors: How LUMINAR Helps CVE Identifier Product Palo Alto Networks PAN-OS Ivanti Connect Secure &Ivanti Policy Secure Fortinet FortiOS & FortiProxy Number of vulnerable servers when the vulnerability was first disclosed Current number of vulnerable servers LUMINAR is an analytics-driven external threat intelligence solution that helps organizations maintain visibility of the threat landscape. LUMINAR has a dedicated Vulnerability Intelligence module designed to: + Provide information about vulnerabilities and the publication of exploits that are relevant to the systems used by the organization + Collect and present findings related to the vulnerability from the different sources covered by LUMINAR to enrich and contextualize the threat posed by each CVE + Generate automatic risk scoring for each CVE to help prioritize the patching of high- profile vulnerabilities In addition, LUMINAR helps in monitoring and managing the external attack surface of organizations through its dedicated Attack Surface Management Module, which: + Monitors exposed internet-facing servers associated with the organization + Provides information about software versions, open ports and SSL certificate data and identifies vulnerabilities, problematic ports and expiration of SSL certificates, thus helping to minimize the attack surface and the risk for threat actors to exploit these internet- facing systems + Generates automatic risk scores to help organizations understand the threat level for each exposed server ID T1071 ID T1071 CVE-2024-3400 CVE-2024-21887 (& CVE-2023-46805 which are often chained together in attacks) CVE-2024-21762 21,921 29,003 232,656 41,662 34,780 491,000 Threat Snapshot 2 Key Findings 1 Blurring Boundaries 3 Vulnerability Intelligence 4 Stolen Access Credentials 6 Tips 7 Ransomware 5 17