Israeli attack surface management startup Ionix Inc. today launched a new centralized threat center designed to accelerate the response of security teams to newly disclosed “zero-day” threats.

The new IONIX Threat Center delivers up-to-the-minute detailed insights into exposures posed by the latest zero-day vulnerabilities — previously unknown security flaws in software or hardware that hackers can exploit before the developers have issued fixes. The threat center identifies specific assets that are exposed or potentially exposed to the zero-day exploit, alerts customers and highlights suggested remediation actions.

IONIX Threat Center works alongside the company’s integration of Exposure Validation capabilities. The IONIX Threat Lab research team performs nonintrusive exploit simulations on each customer’s unique environment to identify and validate exploitable and potentially exploitable assets. The validated findings are presented in the IONIX Threat Center to give customers visibility into their zero-day exposures and one-click access to the necessary remediation action items.

In one example, IONIX points to maintainers of the open-source software Jenkins resolving security flaws in January that included a critical vulnerability that could have resulted in remote code execution if exploited. The Common Vulnerabilities and Exposures number CVE-2024-23897 was assigned to the critical risk, and within hours, the IONIX platform mapped and tested the exploitability of all its customers’ Jenkins instances and alerted customers to this detailed information.

“It’s commonly assumed that only 2% of zero-day vulnerabilities are actively exploited,” said IONIX Chief Executive Marc Gaffan. “Getting to that 2% and helping customers identify the assets with exploitable risks – that’s where the focus of cybersecurity teams should be. With the new Threat Center, IONIX brings clarity to the real impact of zero-day exploits – helping our customers easily identify and fix their important and exploitable assets urgently.”

The Threat Center is said to ensure that new vulnerabilities are quickly identified and analyzed and that customers’ specific exploitable assets are highlighted. Zero-day threat identification and response rapidly detect new vulnerabilities exploited in the wild, with customers presented findings that include validated exploitability and recommended remediation actions.

IONIX, which was previously known as Cyberpion, is a venture capital-backed startup that has raised $50.3 million in funding, according to Tracxn. Investors in the company include U.S. Venture Partners LP, Team8 Capital LLC and Hyperwise Ventures Inc.

Images: IONIX