Penetration testing stories - Page 6

A new report reveals a widening gap between AI innovation and enterprise security, with 36% of firms struggling to keep up with generative AI risks.

Over 80,000 Microsoft Entra ID accounts have been targeted in the UNK_SneakyStrike takeover campaign exploiting the TeamFiltration penetration testing tool.

LevelBlue will acquire Aon's Cybersecurity and IP consulting teams, including Stroz Friedberg, adding 300 experts and boosting global cyber defence services.

Audrey Adeline of SquareX warns the browser, where 80% of device time is spent, is the new cybersecurity battleground in an evolving threat landscape.

Cobalt updates its Offensive Security Platform to streamline pentesting with faster launches, real-time collaboration, clearer risk prioritisation, and workflow automation.

Retailers face a surge in cyber-attacks as weak defences and lapses in multi-factor authentication make them prime targets for criminals seeking valuable data.

Picus Security launches Exposure Validation, a tool using real-time attack simulations to identify which vulnerabilities are truly exploitable in organisations.

Ransomware attacks in Australia surged in 2023–24, costing businesses up to AUD $97,200 on average, urging firms to bolster cyber defences and response plans.

Kaspersky Endpoint Security has achieved 100% tamper protection in AV-Comparatives' April 2025 test, proving its unrivalled resilience on Windows 11 systems.

Pangea's study reveals significant security risks in AI deployment, with one in ten prompt injection attacks bypassing basic defences in corporate systems.

Over 50% of enterprises now use software-driven penetration testing as their primary method to identify IT vulnerabilities, reveals Pentera survey.

Bugcrowd joins AWS ISV Accelerate Program, enhancing global reach and co-selling to offer crowdsourced security services via AWS sales teams worldwide.

Reversec has launched as an independent cybersecurity consultancy, focusing on offensive strategies to help organisations tackle evolving digital threats globally.

Palo Alto Networks launches Prisma AIRS, an AI security platform to protect enterprise AI, including apps, models, data, and agents, amid rising AI adoption.

Bugcrowd launches Red Team as a Service, offering organisations worldwide access to ethical hackers simulating real-world cyber attacks for enhanced security testing.

Bugcrowd launches Red Team as a Service, offering scalable, intelligence-led cyber attack simulations via a global network of ethical hackers.

Cobalt's 2025 State of Pentesting Report reveals that 31% of serious security vulnerabilities remain unaddressed, despite 81% of leaders' confidence in their security.

SquareX reveals data splicing attacks exploiting browser flaws to bypass major DLP solutions, risking corporate data loss and intellectual property theft.

Bugcrowd and GlobalDots have partnered to enhance cloud security, integrating Bugcrowd's platform for over 350 clients in an increasingly demanding market.

Recent DDoS attacks have become increasingly sophisticated, with cybersecurity experts stressing the urgent need for enhanced defence strategies against evolving threats.