Penetration testing stories - Page 4

AI-native cyber attacks and synthetic IDs are forcing firms to shift from periodic checks to continuous, AI-driven security testing by 2026.

HackerOne hires new revenue and marketing chiefs to target soaring enterprise demand for AI-driven security and threat exposure tools.

In 2026, cybercriminals will exploit AI tools and open-source vulnerabilities, escalating ransomware threats with both noisy and stealthy tactics.

Ridge Security's AI-powered RidgeBot platform is now available on Azure Marketplace, offering continuous automated penetration testing for enterprise cloud.

OWASP updates its Top 10 application security risks, with Software Supply Chain Failures now the third biggest concern for professionals worldwide.

Bugcrowd has acquired Mayhem to combine AI-driven automation with human expertise, enhancing continuous cybersecurity testing across software lifecycles.

Outpost24 launches an all-in-one PCI DSS compliance platform, combining certified expertise and automation to ease payment card security management.

Palo Alto Networks reports 48.2% of enterprise IoT devices are high-risk and launches Cortex AgentiX, an AI platform to automate security operations.

Pentest People launches GuardNest, a redesigned cybersecurity platform enhancing usability, workflows, and accessibility for efficient vulnerability management.

Tech Data partners with Horizon3.ai to offer NodeZero platform in APJ, enhancing cybersecurity by validating vulnerabilities before attacks occur.

Practical DevSecOps has certified over 1,000 professionals in its rigorous AI security programme, addressing critical skills gaps in defending against evolving AI threats.

LevelBlue has agreed to acquire Cybereason, enhancing its cybersecurity services with expanded detection, response, and global reach.

Sophos has launched Advisory Services, a new suite of cybersecurity tests to identify and fix security gaps within organisations, enhancing cyber resilience.

Astra Security has launched a new platform to identify and secure undocumented and shadow APIs, tackling rising threats from unmonitored digital interfaces.

Healthcare sector excels in preventing serious security flaws but takes nearly two months to fix them, risking sensitive data exposure amid rising cyber threats.

New DripDropper malware exploits then patches a Linux cloud flaw, securing exclusive access to servers via Apache ActiveMQ vulnerability CVE-2023-46604.

Rapid7 launches Vector Command Advanced, a platform combining automated and human-led tests to enhance security and simplify compliance with PCI, ISO 27001, and NIST.

CISO report reveals AI, supply chain, and insider threats prompt security leaders to adopt offensive strategies and continuous testing for better resilience.

New research shows 15% of CISOs fully leverage crowdsourced security to better tackle AI safety and data privacy challenges in large firms.

CREST launches Pathway and Pathway+ programmes to guide firms through staged progression towards full cyber security accreditation and trust.