Security testing stories

AI powered by Reinforcement Learning is revolutionising cybersecurity, enhancing vulnerability detection and cutting false positives in threat testing.

AWS launches AI agents-Kiro, Security Agent, and DevOps Agent-to automate software development, security, and operations with greater autonomy and scale.

AI is set to transform Southeast Asia’s economy by 2030, but rising AI-powered cyber-attacks demand continuous, adaptive security solutions.

OWASP updates its Top 10 application security risks, with Software Supply Chain Failures now the third biggest concern for professionals worldwide.

Despite 89% piloting AI, 78% neglect core data security, leading to breaches largely from known vulnerabilities, warns new Tenable research.

Singapore’s Government Bug Bounty Programmemes, partnered with YesWeHack, rewarded cybersecurity researchers over USD $250,000 for uncovering system vulnerabilities.

Bugcrowd has acquired Mayhem to combine AI-driven automation with human expertise, enhancing continuous cybersecurity testing across software lifecycles.

Cobalt expands its Offensive Security Platform to offer continuous, AI-driven penetration testing, enhancing visibility and control for enterprise security teams.

Check Point, Lakera and the UK AI Security Institute launch b3, an open-source benchmark to test security of large language models in AI agents.

Outpost24 launches an all-in-one PCI DSS compliance platform, combining certified expertise and automation to ease payment card security management.

Check Point and Lakera launch the open-source b3 benchmark to boost AI agents' LLM security against real-world cyber threats with threat snapshots.

Intigriti partners with Shield to enhance cyber security and ensure NIS2 compliance for Belgian healthcare organisations under FPS Health framework.

Black Duck has been named a Leader in Gartner's 2025 Magic Quadrant for Application Security Testing for the eighth consecutive year, leading in execution.

Black Duck warns AI-driven rapid code deployments are outpacing security, risking vulnerabilities as manual checks and alert overload hinder protection efforts.

Integrating application security into DevSecOps is vital for managing risks and speeding AI-driven software delivery without overwhelming developers.

Financial services excel at preventing cyber vulnerabilities but take a median 61 days to fix issues, risking systemic exposure despite strong security programs.

AI vulnerability reports surged 210% as organisations boosted AI security by 270%, with prompt injection attacks rising 540%, HackerOne's report shows.

Elastic Security earned Certified status with a 99.3% effectiveness rate in AV-Comparatives’ 2025 Endpoint Prevention and Response test, outperforming major rivals.

Astra Security has launched a new platform to identify and secure undocumented and shadow APIs, tackling rising threats from unmonitored digital interfaces.

Outpost24 has launched a unified platform integrating penetration test results, plus new mobile and API packages, to speed up vulnerability detection and response.