Security testing stories

Singapore’s Government Bug Bounty Programmemes, partnered with YesWeHack, rewarded cybersecurity researchers over USD $250,000 for uncovering system vulnerabilities.

Bugcrowd has acquired Mayhem to combine AI-driven automation with human expertise, enhancing continuous cybersecurity testing across software lifecycles.

Cobalt expands its Offensive Security Platform to offer continuous, AI-driven penetration testing, enhancing visibility and control for enterprise security teams.

Check Point, Lakera and the UK AI Security Institute launch b3, an open-source benchmark to test security of large language models in AI agents.

Outpost24 launches an all-in-one PCI DSS compliance platform, combining certified expertise and automation to ease payment card security management.

Check Point and Lakera launch the open-source b3 benchmark to boost AI agents' LLM security against real-world cyber threats with threat snapshots.

Intigriti partners with Shield to enhance cyber security and ensure NIS2 compliance for Belgian healthcare organisations under FPS Health framework.

Black Duck has been named a Leader in Gartner's 2025 Magic Quadrant for Application Security Testing for the eighth consecutive year, leading in execution.

Black Duck warns AI-driven rapid code deployments are outpacing security, risking vulnerabilities as manual checks and alert overload hinder protection efforts.

Integrating application security into DevSecOps is vital for managing risks and speeding AI-driven software delivery without overwhelming developers.

Financial services excel at preventing cyber vulnerabilities but take a median 61 days to fix issues, risking systemic exposure despite strong security programs.

AI vulnerability reports surged 210% as organisations boosted AI security by 270%, with prompt injection attacks rising 540%, HackerOne's report shows.

Elastic Security earned Certified status with a 99.3% effectiveness rate in AV-Comparatives’ 2025 Endpoint Prevention and Response test, outperforming major rivals.

Astra Security has launched a new platform to identify and secure undocumented and shadow APIs, tackling rising threats from unmonitored digital interfaces.

Outpost24 has launched a unified platform integrating penetration test results, plus new mobile and API packages, to speed up vulnerability detection and response.

Bugcrowd’s latest CISO report reveals hardware vulnerabilities surged 88% and network risks doubled amid rising AI use and connected devices in 2024.

JFrog integrates partners like GitHub and Sonar to unify audit and compliance in AppTrust, streamlining governance across the AI-driven software lifecycle.

Eighty-six per cent of Canadian organisations adopting AI in mainframes aim to save over USD $25 million, boosting security, fraud detection, and optimisation.

SYTECH launches a year-long Continual Cyber Assurance programme, offering businesses ongoing cyber security and compliance support without needing in-house experts.

Red Helix has acquired Risk Crew to enhance its UK cyber security services, adding risk management, compliance, and penetration testing to its offerings.