Predict your next investment

Censys company logo
INTERNET | Internet Software & Services / Monitoring & Security
censys.io

See what CB Insights has to offer

Founded Year

2017

Stage

Series A | Alive

Total Raised

$18.1M

Last Raised

$15.5M | 1 yr ago

Mosaic Score

+90 points in the past 30 days

What is a Mosaic Score?
The Mosaic Score is an algorithm that measures the overall financial health and market potential of private companies.

About Censys

Censys provides data-driven security used by researchers, corporations, and governments to find and analyze every device connected to the internet. Censys gives organizations the visibility to fight threats by continuously analyzing real-time internet data.

Censys Headquarter Location

116 1/2 S Main

Ann Arbor, Michigan, 48104,

United States

248-629-0125

Latest Censys News

Attacks Targeting OMIGOD Vulnerability Ramping Up

Sep 21, 2021

By Ionut Arghire on September 20, 2021 Attackers are increasingly targeting a remote code execution vulnerability in the Open Management Infrastructure (OMI) framework that Microsoft released patches for earlier this month. Dubbed OMIGOD and tracked as CVE-2021-38647, this critical vulnerability was found to affect the Linux virtual machines deployed on Azure. In addition to fixes released with its September 2021 Patch Tuesday updates, Microsoft last week released additional mitigations for this bug and three elevation of privilege flaws impacting OMI. Microsoft says that Azure customers with automatic updates enabled should receive the necessary fixes within days, while others should manually update their installations. Other Linux distributions that have the Azure/SCOM/OMS agents installed are also at risk, Pwndefend says . Security researcher Kevin Beaumont, however, warns that Microsoft failed to apply the patches for new deployments, and that the manner in which the tech giant approached the delivery of patches is not as straightforward as expected. Unsurprisingly, less than a week after the vulnerability was publicly disclosed (Microsoft actually pushed fixes to the OMI source code on August 12), attacks targeting CVE-2021-38647 are ramping up. This is what usually happens when critical, highly impactful security defects are made public, but things seem especially grim for this bug in particular, because exploitation is rather trivial. “Rather than guessing a valid authentication token to insert into a fraudulent OMI web request, you simply omit all mention of the authentication token altogether, and you’re in,” Sophos explains . The good news is that there aren’t as many Internet-facing vulnerable deployments as has recently happened with similar vulnerabilities. According to Censys, there are 101 known exposed services worldwide potentially at risk, which includes a major health entity and two major entertainment organizations. “The small footprint can be associated with nuances of how the OMI service responds, and that exposing OMI to the Internet likely requires deliberate effort,” Censys points out. Security researchers monitoring the activity surrounding OMIGOD warn of an increasing number of exploitation attempts targeting the bug. Microsoft too has observed the behavior , saying it ranges from host enumeration to attacks aimed at installing cryptocurrency miners or other types of malware. The tech giant is also aware of reports that cybercriminals have exploited the flaw to install a Mirai variant . “While many of the attackers are looking for port 5986, we are also seeing attacks on port 1270. Due to the number of easily adaptable proof of concept exploits available and the volume of reconnaissance-type attacks, we are anticipating an increase in the number of effects-type attacks,” the company says.

Predict your next investment

The CB Insights tech market intelligence platform analyzes millions of data points on venture capital, startups, patents , partnerships and news mentions to help you see tomorrow's opportunities, today.

Expert Collections containing Censys

Expert Collections are analyst-curated lists that highlight the companies you need to know in the most important technology spaces.

Censys is included in 3 Expert Collections, including 2019 Cyber Defenders.

2

2019 Cyber Defenders

28 items

Our selected startups are early- to mid-stage high-momentum companies pioneering technology with the potential to transform cybersecurity.Unicorns valued at $1B+, companies that have raised funding past the Series C stage, and companies that have not raised funding since 2017 are

C

Conference Exhibitors

5,302 items

C

Cybersecurity

4,682 items

Censys Web Traffic

Rank
Page Views per User (PVPU)
Page Views per Million (PVPM)
Reach per Million (RPM)
CBI Logo

Censys Rank

CB Insights uses Cookies

CBI websites generally use certain cookies to enable better interactions with our sites and services. Use of these cookies, which may be stored on your device, permits us to improve and customize your experience. You can read more about your cookie choices at our privacy policy here. By continuing to use this site you are consenting to these choices.