Penetration testing stories - Page 4

HackerOne hires new revenue and marketing chiefs to target soaring enterprise demand for AI-driven security and threat exposure tools.

In 2026, cybercriminals will exploit AI tools and open-source vulnerabilities, escalating ransomware threats with both noisy and stealthy tactics.

Ridge Security's AI-powered RidgeBot platform is now available on Azure Marketplace, offering continuous automated penetration testing for enterprise cloud.

OWASP updates its Top 10 application security risks, with Software Supply Chain Failures now the third biggest concern for professionals worldwide.

Singapore's Government Bug Bounty Programmemes, partnered with YesWeHack, rewarded cybersecurity researchers over USD $250,000 for uncovering system vulnerabilities.

Bugcrowd has acquired Mayhem to combine AI-driven automation with human expertise, enhancing continuous cybersecurity testing across software lifecycles.

Outpost24 launches an all-in-one PCI DSS compliance platform, combining certified expertise and automation to ease payment card security management.

Palo Alto Networks reports 48.2% of enterprise IoT devices are high-risk and launches Cortex AgentiX, an AI platform to automate security operations.

Pentest People launches GuardNest, a redesigned cybersecurity platform enhancing usability, workflows, and accessibility for efficient vulnerability management.

Tech Data partners with Horizon3.ai to offer NodeZero platform in APJ, enhancing cybersecurity by validating vulnerabilities before attacks occur.

Practical DevSecOps has certified over 1,000 professionals in its rigorous AI security programme, addressing critical skills gaps in defending against evolving AI threats.

LevelBlue has agreed to acquire Cybereason, enhancing its cybersecurity services with expanded detection, response, and global reach.

Sophos has launched Advisory Services, a new suite of cybersecurity tests to identify and fix security gaps within organisations, enhancing cyber resilience.

Senetas has achieved PKTN certification at the Confidential level, allowing its CN Series encryptors to secure Malaysia's critical national information infrastructure.

Astra Security has launched a new platform to identify and secure undocumented and shadow APIs, tackling rising threats from unmonitored digital interfaces.

ReveNet warns APAC's USD $55bn A2P SMS revenue faces steep decline without urgent operator action to tackle rising costs, fraud, and fragmented regulation.

Healthcare sector excels in preventing serious security flaws but takes nearly two months to fix them, risking sensitive data exposure amid rising cyber threats.

New DripDropper malware exploits then patches a Linux cloud flaw, securing exclusive access to servers via Apache ActiveMQ vulnerability CVE-2023-46604.

Rapid7 launches Vector Command Advanced, a platform combining automated and human-led tests to enhance security and simplify compliance with PCI, ISO 27001, and NIST.

CISO report reveals AI, supply chain, and insider threats prompt security leaders to adopt offensive strategies and continuous testing for better resilience.