Penetration testing stories - Page 2

SpecterOps has launched BloodHound Scentry, a managed identity risk service to find and remediate attack paths across complex environments.

SYTECH's two-day virtual workshop with Futures For All introduces 141 global pupils to digital forensics and online safety careers.

Flare reports 114% annual growth among MSSPs as providers consolidate threat intelligence tools to boost services without extra analyst strain.

ENCS and DIVD have agreed a new cyber pact to uncover and disclose vulnerabilities in Europe's high-impact energy and critical systems.

Routine admin tools, not exotic exploits, let attackers race across networks, compromising over half of systems in under an hour.

Lateral movement now eclipses zero-day exploits as the top cyber risk, Zero Networks warns, with attacks able to hit 60% of systems in an hour.

AI-fuelled cyberattacks overwhelm defenders as false positives swamp security teams and critical threats slip through in 2026, Hadrian warns.

AI security fears and rapid release cycles are pushing firms to demand faster, deeper pentesting - and many are ready to ditch existing vendors.

HackerOne launches Agentic PTaaS, blending AI agents with human experts to deliver continuous, always-on penetration testing for enterprises.

AI-driven cloud adoption is forcing firms to swap static privacy checklists for continuous, real-time defence of sensitive data flows.

A critical flaw in Apache bRPC's /pprof/heap endpoint allows unauthenticated remote code execution on exposed services, researchers warn.

Glasgow cyber security provider Acumen Cyber appoints veteran strategist Derek Whigham to its board to steer UK growth and services.

New UK cyber bill pushes critical sectors towards continuous offensive security testing as state-backed and criminal threats intensify.

NCC Group and Delinea launch managed privileged access service, targeting AI-era identity threats with Zero Trust, cloud-native controls.

UK leaders now see AI and automation as top drivers of resilience, yet most still define it mainly as cyber security, new research finds.

Attackers are abusing LinkedIn private messages to deliver Python-based malware via booby-trapped archives, ReliaQuest has warned.

HackerOne unveils Good Faith AI Research Safe Harbor, giving security testers clearer authorisation and protection for probing AI systems.

Practical DevSecOps unveils a hands-on Certified Security Champion course to embed security advocates inside software development teams.

Cobalt debuts a two-way penetration testing integration for Microsoft Teams, promising faster remediation and real-time security collaboration.

Axiologik and Precursor launch AxioSECURE to help UK organisations meet looming Cyber Security and Resilience Bill requirements.