Skip to content

    Posts by Matthew Warner

    Vulnerabilities in Cleo Software Allow for Unauthenticated Remote Code Execution via CVE-2024-55956

    13 min read | December 17, 2024

    What Happened On December 9th, Huntress released a threat advisory reporting a vulnerability and active exploitation of the file transfer management software offered by Cleo,...

    Read More

    About the Author

    Matthew Warner is Chief Technology Officer (CTO) and co-founder of Blumira. Matt brings nearly two decades of IT and cybersecurity experience to his leadership position, and a genuine passion for cybersecurity education. Prior to founding Blumira, he was Director of Security Services at NetWorks Group, a managed security services provider (MSSP) with a focus on compliance and ethical hacking. While at NetWorks Group, Matthew’s team searched for a SIEM that would serve their small to midsize business (SMB) clients well, but found that most products on the market were overly complex, expensive, and difficult to maintain. The concept of Blumira formed when Matthew noticed this significant gap in the market, and he developed a threat detection and response platform that was easy for SMBs to use. After the technology’s internal success at NetWorks Group, Matthew founded Blumira to focus his efforts on growing the platform to scale. Matthew is passionate about helping SMBs, which are often most vulnerable to cyberattacks, improve their security maturity with thoughtful and intentional changes. Through educational opportunities such as webinars, articles, podcasts, conference sessions and more, Matthew shares actionable advice that the most under-resourced and time-strapped teams can undertake. Threat research is another passion of Matthew’s. In late 2021, he led research efforts at Blumira that resulted in the discovery of an additional attack vector in the Log4j vulnerability, offering proactive solutions to help affected entities recover and protect themselves quickly. He works closely with the IT community to determine their pain points and challenges, and develops a product strategy that addresses their specific needs. In 2022, the Globee Cybersecurity Global Excellence Awards program recognized Matthew as CTO of the Year for his leadership and innovative problem-solving, as well as his credible research on Log4j vulnerabilities and notable contributions to Blumira’s 2022 State of Threat Detection and Response Report. Matthew’s dedication to Blumira is as long-lasting as the hedgehog tattoo etched on his leg.

    Security Trends and Info
    7 min read | November 21, 2024

    Midwest Cybersecurity Innovation: The Rise of Silicon Heartland

    Read More
    Manufacturing
    7 min read | August 20, 2024

    How Manufacturers Can Secure Themselves Against Cyber Threats

    Read More
    Education
    6 min read | August 14, 2024

    Supply Chain Vulnerabilities: Addressing Cybersecurity Risks in Manufacturing Networks

    Read More
    Blog
    5 min read | August 2, 2024

    The Blumira Guarantee of Security, Reliability, and Availability

    Read More
    Security Trends and Info
    11 min read | June 9, 2023

    Inescapable: Why Detecting Behaviors Beats Zero-Days

    Read More
    Compliance Security Frameworks and Insurance
    7 min read | October 12, 2022

    Complete Guide to the NIST Cybersecurity Framework

    Read More
    Security Alerts
    16 min read | September 30, 2022

    Zero-Day Vulnerabilities Found in Microsoft Exchange (CVE-2022-41040 and CVE-2022-41082)

    Read More
    Product Updates
    11 min read | April 6, 2022

    Why Blumira Launched a Free SIEM

    Read More
    Security Alerts
    6 min read | March 31, 2022

    Let’s All Calm Down About Spring4Shell

    Read More
    Security Alerts
    3 min read | March 28, 2022

    Patch for Sophos Firewall: (CVE-2022-1040)

    Read More
    Security Alerts
    7 min read | March 22, 2022

    Lapsus$ Claims To Breach Okta Customer Data

    Read More
    Security How-To
    6 min read | February 15, 2022

    Top 7 Cloud Security Best Practices For 2022 

    Read More
    Security Trends and Info
    9 min read | January 4, 2022

    5 Reasons Why We ❤️ Sysmon

    Read More
    Security Alerts
    4 min read | December 23, 2021

    Critical Bugs in Apache HTTPD Server: DoS & RCE

    Read More
    Security Alerts
    13 min read | December 16, 2021

    Log4Shell Alternative Local Trigger Analysis

    Read More