Penetration testing stories - Page 3

SpecterOps has launched BloodHound Scentry, a managed identity risk service to find and remediate attack paths across complex environments.

Flare reports 114% annual growth among MSSPs as providers consolidate threat intelligence tools to boost services without extra analyst strain.

Routine admin tools, not exotic exploits, let attackers race across networks, compromising over half of systems in under an hour.

AI security fears and rapid release cycles are pushing firms to demand faster, deeper pentesting - and many are ready to ditch existing vendors.

HackerOne launches Agentic PTaaS, blending AI agents with human experts to deliver continuous, always-on penetration testing for enterprises.

AI-driven cloud adoption is forcing firms to swap static privacy checklists for continuous, real-time defence of sensitive data flows.

A critical flaw in Apache bRPC's /pprof/heap endpoint allows unauthenticated remote code execution on exposed services, researchers warn.

New UK cyber bill pushes critical sectors towards continuous offensive security testing as state-backed and criminal threats intensify.

NCC Group and Delinea launch managed privileged access service, targeting AI-era identity threats with Zero Trust, cloud-native controls.

Attackers are abusing LinkedIn private messages to deliver Python-based malware via booby-trapped archives, ReliaQuest has warned.

HackerOne unveils Good Faith AI Research Safe Harbor, giving security testers clearer authorisation and protection for probing AI systems.

Practical DevSecOps unveils a hands-on Certified Security Champion course to embed security advocates inside software development teams.

Cobalt debuts a two-way penetration testing integration for Microsoft Teams, promising faster remediation and real-time security collaboration.

F5 rolls out AI Guardrails and AI Red Team to harden runtime security, blending adversarial testing with real-time policy enforcement.

Astra launches a continuous cloud scanner for AWS, Azure and GCP, promising fewer false alerts by validating which risks are truly exploitable.

Horizon3.ai names veteran marketer Andres Botero CMO to spearhead global expansion after a USD $100 million funding boost.

Zyxel becomes FIRST's first Taiwan-based networking member, aiming to speed cyber incident response and bolster global product security.

CrowdStrike launches Falcon AIDR to police AI prompts and agents, tackling injection, jailbreaks and sensitive data leaks in real time.

TXP warns 2026 will bring a low-code legacy crunch, AI-fuelled cognitive overload and tougher scrutiny of cybersecurity in supply chains.

AI-native cyber attacks and synthetic IDs are forcing firms to shift from periodic checks to continuous, AI-driven security testing by 2026.