On October 7, 2021, U.S. Search Awards named LinkGraph the winner of Best Start-Up Agency in the United States. The award recognizes the best SEO agency under 2 years old that demonstrates strong company culture, growth, and profitability with a track record of client wins and retention, while achieving excellent ROI for their clients. LinkGraph was also shortlisted by the Global Search Awards earlier this year in the same category for Best Global Start-Up Agency.
The U.S. Search Awards recognizes the nation’s best agencies, campaigns, innovation, and individuals working in the search industry. Hosted by We Are Search, the Search Awards celebrates the best in PPC, SEO, and continent marketing for nearly a decade with programs all over the globe.
The recognition, awarded by a panel of search industry leaders and experts, comes less than a year after releasing the SearchAtlas Software Suite on linkgraph.io and on the heels of the soft launch of the SearchAtlas SEO mobile app and Google Chrome extension.
Said the judges about LinkGraph’s Best Start-Up Agency win, “We are impressed with how they empower clients to help support their SEO initiatives. It sounds like a positive place to work and they achieve results for a solid client base!”
LinkGraph was also a finalist in the following categories: Best Software Suite for SearchAtlas Software Suite, Best Software Tool for GSC Insights, and Best Low-Budget Campaign for Veil. To see the full list of 2021 U.S. Search Awards winners, visit: https://ussearchawards.com/2021-winners/.
Unprotected Endpoints From Older Versions Of Prometheus Can Be Leveraged To Leak Info
Posted in Commentary with tags Hacked on October 14, 2021 by itnerdJFrog researchers have discovered unprotected endpoints from older versions of Prometheus event monitoring and alerting solutions. Prometheus, an open-source system monitoring and alerting toolkit, is used to collect and process metrics from different endpoints, enabling easy observation of software metrics such as memory usage, network usage and software-specific denied metrics, such as the number of failed logins to a web application. Large-scale unauthenticated scraping of publicly available and non-secured endpoints could be leveraged to leak sensitive information. Which isn’t good seeing that Prometheus is meant to help protect corporate environments.
Giora Engel, CEO and Cofounder, Neosec:
“Prometheus, like many other systems, are all based on APIs for accessing the data and managing the systems. Those systems are spun up frequently without any supervision, they are typically meant for internal use and are poorly secured, if at all. Being able to discover all the exposed APIs and finding cases of weak security is essential in order to remediate and prevent data loss. You can never rely on what’s known and documented in these cases – being able to monitor actual traffic typically discovers all those unknown services that are poorly configured.”
If you have Prometheus, now would be a very good time to update them. Because now that this is out, you can be sure that someone will try to leverage this.
Leave a comment »