Offensive Security stories

New research from Cobalt finds 98% of surveyed pentesters prefer PTaaS to bug bounties and show almost no faith in AI-only security scanning.

Agentic AI massively accelerates elite cyber teams but can slow inexperienced hackers, Hack The Box's large-scale benchmark reveals.

LevelBlue debuts Exposure Management for Partners with Tenable, giving MSSPs and MSPs tiered, unified exposure and risk visibility tools.

LevelBlue launches Resilience Retainer, a flexible funds-based cyber incident response service with rapid SLAs and rollover security spend.

Anthropic unveils Claude Code Security, an AI tool that scans codebases for complex bugs, verifies risks and suggests patches for developers.

CompTIA unveils SecAI+ certification to equip cybersecurity professionals with AI security, risk management and governance skills.

Bitget and BlockSec launch a UEX Security Standard, urging provable, system-wide safeguards for unified multi-asset trading platforms.

SpecterOps has launched BloodHound Scentry, a managed identity risk service to find and remediate attack paths across complex environments.

AI security fears and rapid release cycles are pushing firms to demand faster, deeper pentesting - and many are ready to ditch existing vendors.

HackerOne launches Agentic PTaaS, blending AI agents with human experts to deliver continuous, always-on penetration testing for enterprises.

AI-driven cloud adoption is forcing firms to swap static privacy checklists for continuous, real-time defence of sensitive data flows.

New UK cyber bill pushes critical sectors towards continuous offensive security testing as state-backed and criminal threats intensify.

Misconfigured cloud training labs on AWS, Google Cloud and Azure expose major firms to live attacks via overly permissive access roles.

Agentic AI promises rapid software gains, but a recent Claude Code cyberattack shows how “double agents” can outpace unprepared developers.

Astra launches a continuous cloud scanner for AWS, Azure and GCP, promising fewer false alerts by validating which risks are truly exploitable.

Horizon3.ai names veteran marketer Andres Botero CMO to spearhead global expansion after a USD $100 million funding boost.

AI-native cyber attacks and synthetic IDs are forcing firms to shift from periodic checks to continuous, AI-driven security testing by 2026.

Finance, healthcare and MSSPs face significant cybersecurity skill gaps, urging urgent upskilling beyond compliance to tackle evolving cyber threats effectively.

LevelBlue has agreed to acquire Cybereason, enhancing its cybersecurity services with expanded detection, response, and global reach.

Pedro Diaz has been appointed Tanium's Chief Revenue Officer, leading global sales and revenue to drive international growth in endpoint management solutions.