Fresh insights and real-world lessons on attack surface, third-party risk, and the things that matter.
External Attack Surface Management
10 Questions and Metrics for CISOs to Track Exposure & Supply-Chain Risk
A practical question set to pressure-test external attack surface and vendor risk programs, with outcomes, metrics, and board-ready evidence
Sabrina Pagnotta
September 17, 2025
EASM and MITRE ATT&CK: Mapping Recon Tactics to Discovery
Why visibility at the reconnaissance stage matters, and how to use it.
September 10, 2025
September 11, 2025
Press Releases
Enterprises Face Over 800,000 High-Severity Cyber Hygiene Failures
ThingsRecon, a leader in attack surface discovery, releases its first industry study on enterprise digital hygiene in attack surface and supply chains
ThingsRecon
September 9, 2025
Expert Insights
HTTP Header Hygiene: Technical Deep Dive
Hardening a web app isn’t just patching or TLS—tight HTTP header hygiene is an easy, overlooked way to reduce your attack surface.
Stephane Konarkowski
August 21, 2025
.png)