{"id":80068,"date":"2024-07-19T20:27:36","date_gmt":"2024-07-19T12:27:36","guid":{"rendered":"https:\/\/version-2.com\/?p=80068"},"modified":"2024-07-16T20:29:42","modified_gmt":"2024-07-16T12:29:42","slug":"evolving-threat-landscapes-a-view-through-the-lens-of-caasm","status":"publish","type":"post","link":"https:\/\/version-2.com\/zh\/2024\/07\/evolving-threat-landscapes-a-view-through-the-lens-of-caasm\/","title":{"rendered":"Evolving threat landscapes: a view through the lens of CAASM"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

The only constant in information security is that this<\/em> year will be different from last<\/em> year. Not only will new individual threats emerge, but entirely new classes of threats will make their debut. Some evergreen threats will finally die off, while others will roar back from oblivion. More devices (and more types of devices!) will be connected to networks, and attack surfaces will continue to grow in sophistication and scope.\u00a0<\/p>

Amidst all of these dynamics, one thing remains clear: as more and more devices are attached to networks, we need faster ways to focus limited information security resources where they are needed most. The runZero research team works tirelessly to find the most efficient ways to pinpoint at-risk devices, through both precise fingerprinting and fast outlier analysis. This results in an unprecedented view of both internal and external attack surfaces across IT, OT, IoT, cloud, mobile, and remote environments.<\/p>

Mining our rich Cyber Asset Attack Surface Management (CAASM)<\/a> knowledge base yields insights every day that can aid in exposure mitigation. And this treasure trove of data ultimately served as the genesis of our recent runZero Research Report<\/a>, which offers our perspective\u00a0on the changing security landscape and provides\u00a0recommendations for what your organization can do to evolve with these changes.<\/p>

The power of CAASM<\/h2>

CAASM was born out of the old adage that security teams can\u2019t defend what they don\u2019t know about. The same goes for assets with unknown attributes, like their location, type, and nature. In addition to discovering devices and their associated details, CAASM attempts to methodically uncover the types and severity of exposures impacting those assets, offering defenders a new vantage point to observe the attack surface.<\/p>

CAASM elevates the discovery and visibility of assets to a first-class field under the infosec umbrella, and is now considered a foundational and critical component of an organization\u2019s information security posture. This dynamic is directly tied to the exponential expansion of attack surfaces and to exposures outpacing defenders\u2019 resources.<\/p>

The runZero knowledge base<\/h2>

runZero\u2019s primary data collection method is the runZero Explorer: a lightweight network point-of-presence that is delivered as software and performs active scans, analyzes traffic passively, and integrates with dozens of applications and services.<\/p>

runZero Explorers provide a true insider\u2019s perspective on global cybersecurity, finding ephemeral devices (phones, watches, cars), devices that normally are less monitored (thermostats, projectors, door locks), and the vast \u201cdark matter\u201d of ad hoc and forgotten networks, alongside the assets already on IT\u2019s radar.<\/p>

To provide insight into what the runZero Explorers are seeing in the wild, we investigated the public runZero cloud platform data and extracted a representative, anonymized data sample for analysis. This sample consisted of nearly four million assets with almost fifty million associated, distinct data points, including more than 160 network protocols + that have been normalized into 800+ distinct attributes and filtered through more than 17,000 unique fingerprints.<\/p>

This culmination of data was transformed into the first-ever runZero Research Report<\/a>, a compendium of CAASM insights on the state of asset security.<\/p>

<\/figure>

Redefining attack surfaces in the era of remote work and IT\/OT convergence<\/h2>

The attack surface of an organization is no longer defined by on-premises locations with a known set of managed devices. Today, the attack surface consists of personal mobile phones, smart watches, thermostats in conference rooms, aquarium pumps in the lobby, game consoles in the CEO\u2019s living room, and countless other devices, many of which come and go from the network on a regular basis.<\/p>

The COVID-19 pandemic resulted in an explosion of the attack surface perimeter. While remote work was previously a perk, suddenly it became the standard for countless organizations. Huge numbers of employees retreated from the office and added their home networks as entry points to the previously gated and walled garden under the CISO\u2019s watchful eye.<\/p>

Further complicating today\u2019s attack surfaces, operational technology (OT) and industrial control systems (ICS) have converged with IT. The whole world has, with very rare exceptions, settled on Ethernet and the Internet Protocol stack for IT. The vast, chaotic sea of proprietary protocols and competing standards of the OT\/ICS world have now joined the fray in earnest, along with all the growing pains that come with it.<\/p>

Today, the world\u2019s living rooms and parking lots have become the CISO\u2019s responsibility, as well as its factories and utility grids. In 2024, the US Environmental Protection Agency (EPA) wrote an open letter describing how \u201cdisabling cyberattacks\u201d are attacking water and wastewater systems throughout the United States. Not so long ago, these systems were unreachable directly from the wider Internet. Today, many of them are perilously and openly exposed to attackers from around the world. It is in this world that we, as information security practitioners, now find ourselves. Defining attack surfaces is no longer an academic exercise that can be table-topped once a quarter. As exposures emerge at light speed, rapid, real-time discovery and CAASM are more critical than ever before.<\/p>

<\/em><\/figure>

FIGURE 1 – A list of devices with multiple attack surface designations found by runZero. Devices that span attack surfaces can provide entry points for attackers into internal organizational networks.<\/em><\/p>

New dynamics\u00a0emerge while persistent problems remain<\/h2>

Tectonic shifts are happening in the cybersecurity industry, brought about by the rapid coalescence of several powerful trends and technological developments that have been years in the making. First and foremost, vulnerabilities are being exploited at a truly unprecedented\u00a0pace. And it\u2019s working. So much so that the SEC now requires 8K filings for data breaches<\/a>, not to mention the constant flow of news about emerging vulnerabilities and successful compromises across organizations of every size and sector.<\/p>

While zero day attacks at the network edge have surged, suppliers are struggling to provide timely patches for their products,\u00a0often leaving customers at the mercy of attackers for days or weeks. In response to the acceleration of exploitation, suppliers are now often releasing indicators of compromise (IOCs) in conjunction with their initial notifications to customers. Earlier in 2024, the xz-utils backdoor became a stark reminder that supply chains are still under immense attack with catastrophic potential. The incident also catalyzed conversations about what it means to be a responsible consumer of open source products, and what \u201csupplier\u201d means in a shared security model.<\/p>

Meanwhile, security programs are dogged by end-of-life systems, unknown assets, and network segmentation challenges. These time-consuming issues compete for resources with short-term fire drills related to emerging threats and exposures. Defenders continue to juggle scoping, patch management, emergency response, and incident analysis on top of business requirements \u2013 all while security budgets shrink.<\/p>

Our analysis also indicates that large organizations are still struggling with long-standing configuration problems. Remote management services are not in great shape. The trends for outdated TLS stacks, continued use of outdated protocols like SMB v1, and general hygiene issues with the Secure Shell and Remote Desktop Protocols continue unabated, with serious implications for long-term security. The silver lining is that default choices by operating system vendors are making a difference, but not fast enough to reduce the risk to the overall attack surface.<\/p>

While generative artificial intelligence (Gen AI) and large language models (LLMs) have been touted as the next big thing for security, the reality is more modest. LLMs are helpful in many contexts, but are still prediction engines at heart. As a result, LLMs are limited to helping with the human side of security and struggle to replace expert systems and logic-based decision-making.<\/p>

Closing thought<\/h2>

The constantly evolving threat landscape demands agility and visibility like never before. As organizations brace for the emergence of new threats and bid farewell to obsolete ones, the need for efficient allocation of security resources becomes paramount. Speedy and accurate asset discovery, attack surface assessment, and exposure management are at the forefront of today\u2019s most advanced cybersecurity programs.<\/p>

Stay tuned for more insights from the runZero research team on what you need to know about the state of asset security and how to use runZero to strengthen your defenses.<\/p>

Not a runZero customer? Start a free trial<\/a> and gain complete asset inventory and attack surface visibility in minutes.<\/p><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

About Version 2 Digital<\/h3>

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.\n

\nThrough an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.<\/p><\/div><\/div>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t\n\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

About runZero<\/strong>
runZero, a network discovery and asset inventory solution, was founded in 2018 by HD Moore, the creator of Metasploit. HD envisioned a modern active discovery solution that could find and identify everything on a network\u2013without credentials. As a security researcher and penetration tester, he often employed benign ways to get information leaks and piece them together to build device profiles. Eventually, this work led him to leverage applied research and the discovery techniques developed for security and penetration testing to create runZero.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

The only constant in information security is that this […]<\/p>\n","protected":false},"author":149011790,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[976,1273,61],"tags":[977,1272],"class_list":["post-80068","post","type-post","status-publish","format-standard","hentry","category-runzero","category-1273","category-press-release","tag-runzero","tag-1272"],"acf":[],"yoast_head":"\nEvolving threat landscapes: a view through the lens of CAASM - Version 2<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/\" \/>\n<meta property=\"og:locale\" content=\"zh_HK\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Evolving threat landscapes: a view through the lens of CAASM - Version 2\" \/>\n<meta property=\"og:description\" content=\"The only constant in information security is that this […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/\" \/>\n<meta property=\"og:site_name\" content=\"Version 2\" \/>\n<meta property=\"article:published_time\" content=\"2024-07-19T12:27:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA\" \/>\n<meta name=\"author\" content=\"tracylamv2\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"tracylamv2\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9810\u8a08\u95b1\u8b80\u6642\u9593\" \/>\n\t<meta name=\"twitter:data2\" content=\"8 \u5206\u9418\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/2024\\\/07\\\/evolving-threat-landscapes-a-view-through-the-lens-of-caasm\\\/\"},\"author\":{\"name\":\"tracylamv2\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/person\\\/011bc7c3731c930bcfeecd52fefb6365\"},\"headline\":\"Evolving threat landscapes: a view through the lens of CAASM\",\"datePublished\":\"2024-07-19T12:27:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/2024\\\/07\\\/evolving-threat-landscapes-a-view-through-the-lens-of-caasm\\\/\"},\"wordCount\":1369,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/lh7-us.googleusercontent.com\\\/docsz\\\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA\",\"keywords\":[\"runZero\",\"2024\"],\"articleSection\":[\"runZero\",\"2024\",\"Press Release\"],\"inLanguage\":\"zh-HK\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/version-2.com\\\/2024\\\/07\\\/evolving-threat-landscapes-a-view-through-the-lens-of-caasm\\\/\",\"url\":\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/\",\"name\":\"Evolving threat landscapes: a view through the lens of CAASM - Version 2\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/lh7-us.googleusercontent.com\\\/docsz\\\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA\",\"datePublished\":\"2024-07-19T12:27:36+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/#breadcrumb\"},\"inLanguage\":\"zh-HK\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-HK\",\"@id\":\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/#primaryimage\",\"url\":\"https:\\\/\\\/lh7-us.googleusercontent.com\\\/docsz\\\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA\",\"contentUrl\":\"https:\\\/\\\/lh7-us.googleusercontent.com\\\/docsz\\\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.runzero.com\\\/blog\\\/caasm-threat-landscape\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9801\",\"item\":\"https:\\\/\\\/version-2.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Evolving threat landscapes: a view through the lens of CAASM\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#website\",\"url\":\"https:\\\/\\\/version-2.com\\\/zh\\\/\",\"name\":\"Version 2\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/version-2.com\\\/zh\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"zh-HK\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\",\"name\":\"Version 2\",\"url\":\"https:\\\/\\\/version-2.com\\\/zh\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-HK\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/08\\\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/08\\\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1\",\"width\":1795,\"height\":335,\"caption\":\"Version 2\"},\"image\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/person\\\/011bc7c3731c930bcfeecd52fefb6365\",\"name\":\"tracylamv2\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-HK\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/9d01d79cbfd8b2e878f5d701a362cc9fca466d33fec977b59706c23c1a2db15c?s=96&d=identicon&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/9d01d79cbfd8b2e878f5d701a362cc9fca466d33fec977b59706c23c1a2db15c?s=96&d=identicon&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/9d01d79cbfd8b2e878f5d701a362cc9fca466d33fec977b59706c23c1a2db15c?s=96&d=identicon&r=g\",\"caption\":\"tracylamv2\"},\"url\":\"https:\\\/\\\/version-2.com\\\/zh\\\/author\\\/tracylamv2\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Evolving threat landscapes: a view through the lens of CAASM - Version 2","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/","og_locale":"zh_HK","og_type":"article","og_title":"Evolving threat landscapes: a view through the lens of CAASM - Version 2","og_description":"The only constant in information security is that this […]","og_url":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/","og_site_name":"Version 2","article_published_time":"2024-07-19T12:27:36+00:00","og_image":[{"url":"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA","type":"","width":"","height":""}],"author":"tracylamv2","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"tracylamv2","\u9810\u8a08\u95b1\u8b80\u6642\u9593":"8 \u5206\u9418"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/#article","isPartOf":{"@id":"https:\/\/version-2.com\/2024\/07\/evolving-threat-landscapes-a-view-through-the-lens-of-caasm\/"},"author":{"name":"tracylamv2","@id":"https:\/\/version-2.com\/zh\/#\/schema\/person\/011bc7c3731c930bcfeecd52fefb6365"},"headline":"Evolving threat landscapes: a view through the lens of CAASM","datePublished":"2024-07-19T12:27:36+00:00","mainEntityOfPage":{"@id":"https:\/\/version-2.com\/2024\/07\/evolving-threat-landscapes-a-view-through-the-lens-of-caasm\/"},"wordCount":1369,"commentCount":0,"publisher":{"@id":"https:\/\/version-2.com\/zh\/#organization"},"image":{"@id":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/#primaryimage"},"thumbnailUrl":"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA","keywords":["runZero","2024"],"articleSection":["runZero","2024","Press Release"],"inLanguage":"zh-HK","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/version-2.com\/2024\/07\/evolving-threat-landscapes-a-view-through-the-lens-of-caasm\/","url":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/","name":"Evolving threat landscapes: a view through the lens of CAASM - Version 2","isPartOf":{"@id":"https:\/\/version-2.com\/zh\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/#primaryimage"},"image":{"@id":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/#primaryimage"},"thumbnailUrl":"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA","datePublished":"2024-07-19T12:27:36+00:00","breadcrumb":{"@id":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/#breadcrumb"},"inLanguage":"zh-HK","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/"]}]},{"@type":"ImageObject","inLanguage":"zh-HK","@id":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/#primaryimage","url":"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA","contentUrl":"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXe3Kc-guLKtdRFFWMlO-SZiuRxmYTzYkGoEbcEws7GvOZou7-wGGcBiK__AO0z5qVy9tW0hyFztNKQZ85IUQxDfXSqSuUrp01_l4xi4jqqWTPGbnYgscYB2cpeq2e-PLvZs2Q7Zn9AnEUEeZpIvBN32tYn9?key=rm-W_il6m_JqN-WsNeELXA"},{"@type":"BreadcrumbList","@id":"https:\/\/www.runzero.com\/blog\/caasm-threat-landscape\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9801","item":"https:\/\/version-2.com\/"},{"@type":"ListItem","position":2,"name":"Evolving threat landscapes: a view through the lens of CAASM"}]},{"@type":"WebSite","@id":"https:\/\/version-2.com\/zh\/#website","url":"https:\/\/version-2.com\/zh\/","name":"Version 2","description":"","publisher":{"@id":"https:\/\/version-2.com\/zh\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/version-2.com\/zh\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"zh-HK"},{"@type":"Organization","@id":"https:\/\/version-2.com\/zh\/#organization","name":"Version 2","url":"https:\/\/version-2.com\/zh\/","logo":{"@type":"ImageObject","inLanguage":"zh-HK","@id":"https:\/\/version-2.com\/zh\/#\/schema\/logo\/image\/","url":"https:\/\/i0.wp.com\/version-2.com\/wp-content\/uploads\/2020\/08\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1","contentUrl":"https:\/\/i0.wp.com\/version-2.com\/wp-content\/uploads\/2020\/08\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1","width":1795,"height":335,"caption":"Version 2"},"image":{"@id":"https:\/\/version-2.com\/zh\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/version-2.com\/zh\/#\/schema\/person\/011bc7c3731c930bcfeecd52fefb6365","name":"tracylamv2","image":{"@type":"ImageObject","inLanguage":"zh-HK","@id":"https:\/\/secure.gravatar.com\/avatar\/9d01d79cbfd8b2e878f5d701a362cc9fca466d33fec977b59706c23c1a2db15c?s=96&d=identicon&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/9d01d79cbfd8b2e878f5d701a362cc9fca466d33fec977b59706c23c1a2db15c?s=96&d=identicon&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/9d01d79cbfd8b2e878f5d701a362cc9fca466d33fec977b59706c23c1a2db15c?s=96&d=identicon&r=g","caption":"tracylamv2"},"url":"https:\/\/version-2.com\/zh\/author\/tracylamv2\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pbQRKm-kPq","post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/posts\/80068","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/users\/149011790"}],"replies":[{"embeddable":true,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/comments?post=80068"}],"version-history":[{"count":10,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/posts\/80068\/revisions"}],"predecessor-version":[{"id":80078,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/posts\/80068\/revisions\/80078"}],"wp:attachment":[{"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/media?parent=80068"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/categories?post=80068"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/tags?post=80068"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}