Penetration testing stories - Page 5

OWASP updates its Top 10 application security risks, with Software Supply Chain Failures now the third biggest concern for professionals worldwide.

The UK Government's Cyber Security and Resilience Bill raises standards for over 900 suppliers, enhancing cyber defence across critical national infrastructure and supply chains.

Bugcrowd has acquired Mayhem to combine AI-driven automation with human expertise, enhancing continuous cybersecurity testing across software lifecycles.

Outpost24 launches an all-in-one PCI DSS compliance platform, combining certified expertise and automation to ease payment card security management.

Palo Alto Networks reports 48.2% of enterprise IoT devices are high-risk and launches Cortex AgentiX, an AI platform to automate security operations.

Pentest People launches GuardNest, a redesigned cybersecurity platform enhancing usability, workflows, and accessibility for efficient vulnerability management.

Intigriti partners with Shield to enhance cyber security and ensure NIS2 compliance for Belgian healthcare organisations under FPS Health framework.

Practical DevSecOps has certified over 1,000 professionals in its rigorous AI security programme, addressing critical skills gaps in defending against evolving AI threats.

Data centres face unique risks requiring robust security measures; these six best practices cover physical and cybersecurity to safeguard sensitive data effectively.

SYTECH has adopted the new UK Forensic Science Regulator Code, enhancing its digital forensic standards and commitment to quality and compliance.

LevelBlue has agreed to acquire Cybereason, enhancing its cybersecurity services with expanded detection, response, and global reach.

Sophos has launched Advisory Services, a new suite of cybersecurity tests to identify and fix security gaps within organisations, enhancing cyber resilience.

Financial services excel at preventing cyber vulnerabilities but take a median 61 days to fix issues, risking systemic exposure despite strong security programs.

Astra Security has launched a new platform to identify and secure undocumented and shadow APIs, tackling rising threats from unmonitored digital interfaces.

Outpost24 has launched a unified platform integrating penetration test results, plus new mobile and API packages, to speed up vulnerability detection and response.

Peter Villiers joins Barrier Networks as Director of Cyber Risk, boosting cyber resilience amid rapid growth in staff and revenue for the Glasgow-based firm.

Healthcare sector excels in preventing serious security flaws but takes nearly two months to fix them, risking sensitive data exposure amid rising cyber threats.

SYTECH launches a year-long Continual Cyber Assurance programme, offering businesses ongoing cyber security and compliance support without needing in-house experts.

Red Helix has acquired Risk Crew to enhance its UK cyber security services, adding risk management, compliance, and penetration testing to its offerings.

New DripDropper malware exploits then patches a Linux cloud flaw, securing exclusive access to servers via Apache ActiveMQ vulnerability CVE-2023-46604.