LIVETHREAT INTELLIGENCE
NVD/NISTCVE-2025-29927 β€” Next.js Middleware Auth Bypass Β· All versions <15.2.3 affectedCRITICAL 9.1β—†AlienVault OTXAPT29 (Cozy Bear) β€” Active Spear-Phishing Campaign Targeting NATO DiplomatsCRITICAL 9.3β—†Recorded FutureCl0p Ransomware β€” MOVEit-style Campaign Targeting MFT Solutions GloballyCRITICAL 9.5β—†Shodan22,000+ Redis Instances Exposed on Port 6379 β€” No Auth β€” Cryptominer RiskHIGH 8.9β—†VirusTotalCVE-2025-21298 β€” Windows OLE Remote Code Execution Β· CISA KEV Catalog AddedCRITICAL 9.8β—†Censys14,500+ Exposed Kubernetes API Servers Detected β€” Anonymous Access EnabledHIGH 8.7β—†AlienVault OTXFIN7 Carbanak Group β€” New JavaScript Backdoor Targeting Retail POS SystemsHIGH 8.4β—†NVD/NISTCVE-2025-24813 β€” Apache Tomcat RCE via Partial PUT Β· Exploit Code PublicCRITICAL 9.8β—†Recorded FutureDark Web Auction: 2.1M U.S. Healthcare Records Listed Β· PII + Insurance DataHIGH 8.1β—†VirusTotalLumma Stealer v4.1 β€” New Evasion Bypass for Windows Defender SmartScreenHIGH 8.6β—†NVD/NISTCVE-2025-30065 β€” Apache Parquet RCE via Schema Parsing Β· CVSS Maximum ScoreCRITICAL 10.0β—†Recorded FutureSalt Typhoon (China) β€” Telco Backdoors Persist in 3 U.S. Carriers Post-DisclosureCRITICAL 9.2β—†VirusTotalDragonForce Ransomware β€” New Affiliate Program Attracting LockBit DefectorsHIGH 8.5β—†ShodanCitrix NetScaler Bleed (CVE-2023-4966) β€” 4,800 Unpatched Hosts Still ExploitableCRITICAL 9.4β—†CensysIvanti Connect Secure 0-Day Chain β€” Nation-State Actor Exploitation ConfirmedCRITICAL 9.0β—†AlienVault OTXBEC Surge Q1 2026 β€” $3.1B in Wire Fraud Β· AI Voice Cloning in UseHIGH 7.9β—†NVD/NISTCVE-2025-29927 β€” Next.js Middleware Auth Bypass Β· All versions <15.2.3 affectedCRITICAL 9.1β—†AlienVault OTXAPT29 (Cozy Bear) β€” Active Spear-Phishing Campaign Targeting NATO DiplomatsCRITICAL 9.3β—†Recorded FutureCl0p Ransomware β€” MOVEit-style Campaign Targeting MFT Solutions GloballyCRITICAL 9.5β—†Shodan22,000+ Redis Instances Exposed on Port 6379 β€” No Auth β€” Cryptominer RiskHIGH 8.9β—†VirusTotalCVE-2025-21298 β€” Windows OLE Remote Code Execution Β· CISA KEV Catalog AddedCRITICAL 9.8β—†Censys14,500+ Exposed Kubernetes API Servers Detected β€” Anonymous Access EnabledHIGH 8.7β—†AlienVault OTXFIN7 Carbanak Group β€” New JavaScript Backdoor Targeting Retail POS SystemsHIGH 8.4β—†NVD/NISTCVE-2025-24813 β€” Apache Tomcat RCE via Partial PUT Β· Exploit Code PublicCRITICAL 9.8β—†Recorded FutureDark Web Auction: 2.1M U.S. Healthcare Records Listed Β· PII + Insurance DataHIGH 8.1β—†VirusTotalLumma Stealer v4.1 β€” New Evasion Bypass for Windows Defender SmartScreenHIGH 8.6β—†NVD/NISTCVE-2025-30065 β€” Apache Parquet RCE via Schema Parsing Β· CVSS Maximum ScoreCRITICAL 10.0β—†Recorded FutureSalt Typhoon (China) β€” Telco Backdoors Persist in 3 U.S. Carriers Post-DisclosureCRITICAL 9.2β—†VirusTotalDragonForce Ransomware β€” New Affiliate Program Attracting LockBit DefectorsHIGH 8.5β—†ShodanCitrix NetScaler Bleed (CVE-2023-4966) β€” 4,800 Unpatched Hosts Still ExploitableCRITICAL 9.4β—†CensysIvanti Connect Secure 0-Day Chain β€” Nation-State Actor Exploitation ConfirmedCRITICAL 9.0β—†AlienVault OTXBEC Surge Q1 2026 β€” $3.1B in Wire Fraud Β· AI Voice Cloning in UseHIGH 7.9β—†
ABOUT US

Institutional Security for Finance Professionals

HorizonShield was founded by a finance and cybersecurity practitioner who has operated inside the world's most data-sensitive institutions. We combine deep hedge fund operations expertise with enterprise-grade cyber defence to protect financial organizations from modern threats.

Our Mission

To deliver intelligence-led cybersecurity that is purpose-built for finance β€” protecting fund data, investor PII, and trading infrastructure with the same rigour demanded by institutional compliance.

Our Vision

A financial industry where every firm β€” from boutique hedge funds to global custodians β€” has access to the security posture previously reserved for tier-1 banks.

Our Values

Transparency, precision, and zero-trust thinking. We hold our security architecture to the same standard we hold our fund accounting: every position verified, every exposure documented.

500+
Organizations Protected
15+
Years Finance & IT
24/7
SOC Operations
51
Academy Lessons
4
Training Paths
99.9%
Uptime SLA
FOUNDER

Where Finance Meets Cyber Defence

HorizonShield is led by a practitioner who has worked at the intersection of institutional finance and information security.

Wael Ahmed

Founder & Chief Security Officer Β· MBA (Information Technology)

Wael Ahmed brings a rare combination of institutional finance operations and cybersecurity engineering. As a Hedge Fund Accounting Manager at SS&C Technologies and BNY Mellon, he oversaw fund-level data integrity, NAV reporting, and compliance for some of the world's largest alternative investment mandates.

Armed with an MBA in Information Technology, Wael founded HorizonShield to address a critical gap: financial firms face the most sophisticated cyber adversaries yet are often served by security providers who do not speak the language of fund operations, regulatory reporting, or institutional data governance. HorizonShield changes that.

SS&C Technologies
BNY Mellon
MBA Β· Information Technology
Hedge Fund Accounting
Cybersecurity
TEAM

Built by Security Practitioners

Our analysts and engineers bring combined experience from intelligence agencies, Fortune 500 security teams, and financial sector red-team operations.

Wael Ahmed

Founder & Chief Security Officer Β· MBA (IT) Β· Hedge Fund Accounting

SOC Team

Threat Analysts & Incident Responders β€” Finance Sector Specialists

Red Team

Offensive Security β€” Financial Infrastructure Penetration Testing

Secure Your Financial Infrastructure

Get a free vulnerability assessment tailored to hedge fund and financial institution environments, or explore our academy to sharpen your team's skills.

Get ProtectedExplore Academy