Horizon3.ai

NightDragon Founder & CEO Dave DeWalt stopped by our booth at RSAC last week to chat with Horizon3.ai Co-Founder Anthony Pillitiere — watch the video to learn more about our proactive security platform and why it's so critical in the age of AI. ⬇️

🚨 There’s an actively exploited data leak in Citrix NetScaler ADC and NetScaler Gateway. We’ve released a Rapid Response test for it. CVE-2026-3055 (CVSS 9.3) is a SAML IdP memory overread vulnerability. An unauthenticated attacker can send crafted requests to read sensitive data directly from process memory. No auth required. No user interaction required. If the appliance is configured as a SAML Identity Provider, this can expose: • Session tokens • Credentials • Sensitive in-memory data This is a front-door system — NetScaler sits in front of critical apps, VDI, and enterprise access. Compromise here isn’t just data exposure — it can enable follow-on access into downstream systems. Reports indicate this vulnerability is under active exploitation. Affected Systems: • NetScaler ADC (Citrix ADC) • NetScaler Gateway (Citrix Gateway) • Configured as SAML IdP and running vulnerable versions If you’re running NetScaler: ⚠️ Check if SAML IdP is enabled ⚠️ Identify versions prior to the fixed release (14.1-60.58 and earlier) 👉 Run the #NodeZero Rapid Response test to quickly validate internal and external exploitability — and re-run after patching to confirm remediation: https://lnkd.in/gmJ7y5Hx #ProactiveSecurity #AISecurity #cybersecurity #infosec

From San Francisco… to Times Square. 🗽 Nasdaq just celebrated Horizon3.ai as one of the 2025 Deloitte Technology Fast 500™ Bay Area winners, and the numbers that got us here are hard to ignore: 🥇 No. 1 fastest-growing company in the Bay Area 🥉 No. 3 fastest-growing company in North America 🚀 19,939% growth in just 3 years Appearing on this list is a reflection of a massive shift in cybersecurity, where organizations are done guessing their business risk. Instead, they’re using Horizon3.ai's Proactive Security Platform to continuously prove what’s exploitable, fix what matters, and stay ahead of attackers at machine speed. This is what the Fast 500 is all about: real momentum, real impact, and companies redefining their industries. 💪 #DeloitteFast500 #Cybersecurity #AI #ProactiveSecurity #NodeZero

#RSAC2026: ✅ This week made it clear: despite massive investment, most organizations still can’t prove they’re secure. Risk is still a guess, and AI is giving attackers the edge. Security leaders want proof. Proof of risk, resilience, and what actually matters. With continuous, attacker-driven testing — and #NodeZero, the world’s best AI hacker — teams can finally gain clarity, focus efforts, and prove their security posture. Massive thanks to our team on the ground in San Francisco for an incredible week, and to everyone who stopped by or joined a demo. We loved connecting! 👏 #RSAC26 #RSA2026 #ProactiveSecurity #AISecurity

Thank you to our friends at Code Red Partners and our AI Arms Race panelists, Snehal Antani, Damian Hasse, Evan M., Mark Hillick, and Mrityunjay Gautam, for discussing how AI is reshaping enterprise security. 👏 This was a strong reminder that as AI accelerates exploits and enables a new class of attackers, security teams must continuously test what works, fix what doesn’t, and stay ahead of emerging risks in real time. Brex Moveworks Instacart Robinhood #AISecurity #ProactiveSecurity #RSAC2026 #RSA2026

Wrapped up day 3 of #RSAC2026 with Horizon3.ai Co-Founder Anthony Pillitiere and NightDragon Founder & CEO Dave DeWalt on camera! 🎥 We also hosted a customer lunch and more demos at the booth than we can count. Haven’t met the world’s best AI hacker yet? Stop by booth N-4201 tomorrow to see #NodeZero in action. #ProactiveSecurity #AISecurity #RSAC26 #RSA26

🚨 A malicious credential stealer was discovered in BerriAI LiteLLM — and if you installed it, you should assume compromise. LiteLLM versions 1.82.7 and 1.82.8 were backdoored and distributed via PyPI, impacting a widely used open-source LLM proxy library (~95M monthly downloads). This is a supply chain attack, not a typical vulnerability. The malicious payload executes automatically (no import required in some cases) and: • Collects SSH keys, environment variables, cloud credentials, API keys, DB passwords • Exfiltrates data to an attacker-controlled domain • Attempts Kubernetes lateral movement and cluster takeover • Installs persistence via systemd backdoor If these versions were installed, your secrets are already gone. This affects: • Developer machines • CI/CD pipelines • Containers and production systems • Any downstream projects pulling LiteLLM as a dependency This campaign has been linked to a broader multi-ecosystem supply chain operation impacting GitHub Actions, Docker Hub, npm, and more. Immediate actions: ⚠️ Remove LiteLLM 1.82.7 and 1.82.8 ⚠️ Purge package caches to prevent reinstall ⚠️ Rotate ALL credentials present on affected systems ⚠️ Audit for persistence and Kubernetes compromise Safe version: 1.82.6 (last known clean) We are tracking this closely. While there is no targeted Rapid Response test for this advisory, this is a full incident response scenario, not a patch-and-move-on situation. If this package touched your environment, treat it as compromised. More info at https://lnkd.in/dCFWHMYN #AISecurity #ProactiveSecurity #infosec #cybersecurity

AI gives attackers the advantage, but Horizon3.ai’s AI-Native Proactive Security Platform enables organizations to level the playing field and fight AI with AI. That’s why we were recognized by Fast Company as one of the most innovative companies in 2026, alongside Sublime Security, Cyera, Chainguard, and more. Learn how we’re turning one of cybersecurity’s biggest challenges into one of its biggest strengths at https://lnkd.in/eWnxib6K. And if you're at #RSAC2026, come by and see us in person at booth N-4201! #ProactiveSecurity #AISecurity #FastCompany

Horizon3.ai CEO Snehal Antani took the win at Tomorrow’s Titans during the NightDragon Innovation Summit! 🏆 Thank you to Dave DeWalt and team for having us — this was an incredible stage to prove what the future of #cybersecurity looks like when you replace assumptions with real proof of resilience. #RSAC2026 #RSAC26 #ProactiveSecurity #AISecurity