CFOtech India - Technology news for CFOs & financial decision-makers
India

Penetration testing Stories

Global Stories

Penetration testing stories

CyberCX report finds 29% of tests exposed severe flaws
Digital Transformation

CyberCX report finds 29% of tests exposed severe flaws

AI systems and social engineering tests proved especially risky, as CyberCX found severe weaknesses in half and 77% of cases respectively.

By Sean Mitchell 4 min read Yesterday
Microsoft patches 137 flaws, including critical Netlogon
Network Infrastructure

Microsoft patches 137 flaws, including critical Netlogon

Domain controllers face urgent patching after a Netlogon flaw was rated 9.8, with no privileges or user interaction needed for exploitation.

By Joseph Gabriel Lagonsin 4 min read Yesterday
AI drives ransomware surge, experts urge faster defence
Malware

AI drives ransomware surge, experts urge faster defence

Experts say AI is accelerating ransomware attacks, shrinking the patching window and forcing organisations to overhaul defences and recovery plans.

By Sofiah Nichole Salivio 6 min read 2 days ago
AI now routine in cyber attacks, Google report finds
Malware

AI now routine in cyber attacks, Google report finds

Security teams face a broader threat as criminals and state-backed actors use generative AI to speed hacks, phishing and malware.

By Joseph Gabriel Lagonsin 4 min read 2 days ago
OpenAI launches GPT-5.5-Cyber for vetted defenders
Firewalls

OpenAI launches GPT-5.5-Cyber for vetted defenders

Vetted security teams will get fewer refusals on authorised tasks as OpenAI tightens access around its most permissive cyber model.

By Mark Tarre 4 min read Last week
Synack launches Sara AI Pentesting for wider coverage
Data Protection

Synack launches Sara AI Pentesting for wider coverage

The move aims to widen security coverage as firms struggle to test expanding attack surfaces quickly enough.

By Joseph Gabriel Lagonsin 4 min read Last week
Strike Graph launches Trust Chain for supplier risk
Data Protection

Strike Graph launches Trust Chain for supplier risk

Vendor assessments could be completed faster and with less manual chasing as the new tool verifies evidence rather than self-reported answers.

By Sofiah Nichole Salivio 4 min read Last week
CrowdStrike widens QuiltWorks & launches Defender hunting
Endpoint Protection

CrowdStrike widens QuiltWorks & launches Defender hunting

Enterprises using Microsoft Defender will get round-the-clock human-led threat hunting, as CrowdStrike also broadens its AI risk coalition across partners.

By Joseph Gabriel Lagonsin 4 min read Last week
Intruder launches AI pentesting for faster validation
DevOps

Intruder launches AI pentesting for faster validation

Security teams can now validate scanner findings in minutes as Intruder rolls out AI agents to cut false positives and speed remediation.

By Catherine Knowles 3 min read This month
Intruder launches AI pentesting to cut vulnerability triage
DevOps

Intruder launches AI pentesting to cut vulnerability triage

Security teams can now validate scanner alerts in minutes as Intruder’s new AI agents cut false positives and speed up triage.

By Sofiah Nichole Salivio 4 min read Last month
Rippling launches SOC 2 compliance tool for IT teams
Data Protection

Rippling launches SOC 2 compliance tool for IT teams

Compliance checks can now draw on existing workforce data, cutting months of manual SOC 2 prep for IT teams already using Rippling.

By Karen Joy Bacudo 4 min read Last month

Stories from Other Regions

Penetration testing stories

WorkNest launches Secure division with Pentest People
Data Protection

WorkNest launches Secure division with Pentest People

Customers get a single cyber and compliance service as WorkNest folds Pentest People and Bulletproof into a new security division.

By Sean Mitchell 3 min read Yesterday
Cybersecurity has a speed problem
DevOps

Cybersecurity has a speed problem

Vulnerability exploitation has collapsed from years to hours, leaving organisations racing to fix exposed systems before attackers do.

By Jorge Monteiro 4 min read Last week
Lloyds, Google & Hack The Box host UK finance hackathon
DevOps

Lloyds, Google & Hack The Box host UK finance hackathon

Banks and fintechs are being pushed to sharpen cyber defences as AI threats and operational knock-on effects test the UK payments system.

By Karen Joy Bacudo 4 min read Last week
UK cyber breach survey bolsters call for legal reform
Firewalls

UK cyber breach survey bolsters call for legal reform

The findings add pressure on ministers to modernise the 1990 Computer Misuse Act as breaches hit 43% of UK businesses and 28% of charities.

By Shannon Williams 3 min read This month
Singapore phishing drill cuts clicks as training pays
Data Protection

Singapore phishing drill cuts clicks as training pays

Repeated phishing training helped cut Singapore staff click rates to 7.4% from 17%, despite more than 8,500 fake emails sent.

By Mark Tarre 3 min read Last month
AI now powers most dangerous cyber threats, warns SANS
Malware

AI now powers most dangerous cyber threats, warns SANS

Defenders face faster, harder-to-stop attacks as SANS says AI is now built into phishing, malware and reconnaissance at scale.

By Kaleah Salmon 3 min read Last month
AI drives demand for cybersecurity compliance experts
Data Protection

AI drives demand for cybersecurity compliance experts

Businesses are seeking more advisers as AI and tighter rules make cybersecurity compliance the most in-demand skillset on Malt’s platform.

By Sean Mitchell 4 min read Last month