SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers
United Kingdom

Security testing Stories

UK Stories

Security testing stories

Cyber Scheme launches company accreditation programme
DevOps

Cyber Scheme launches company accreditation programme

UK cyber security suppliers could gain access to regulated procurement frameworks under a new accreditation scheme based on staff competence.

By Sofiah Nichole Salivio 4 min read Last month

Global Stories

Security testing stories

Outer Hebrides cyber firm wins Scotland tech award
Supply Chain

Outer Hebrides cyber firm wins Scotland tech award

The award puts a remote island cyber specialist in the national spotlight as firms seek more help against rising attacks.

By Mark Tarre 3 min read Last week
Sweet launches AI red-team agent to test attack paths
Cloud Security

Sweet launches AI red-team agent to test attack paths

Security teams under pressure to prove real exploitability can now test live production systems for attack paths rather than theoretical flaws.

By Sofiah Nichole Salivio 4 min read Last week
Integrated Quantum launches Kaggle test of VEIL anonymity
Data Protection

Integrated Quantum launches Kaggle test of VEIL anonymity

The public test could bolster or undermine claims that VEIL can anonymise sensitive AI data without letting outsiders recover the original records.

By Sean Mitchell 4 min read Last week
Cisco open-sources Foundry Security Spec for AI testing
Application Security

Cisco open-sources Foundry Security Spec for AI testing

Security teams will be able to verify AI-generated vulnerability findings more reliably, as Cisco's framework tackles false positives and invented issues.

By Mark Tarre 4 min read Last week
Microsoft unveils MDASH to find Windows security flaws
Network Security

Microsoft unveils MDASH to find Windows security flaws

The scanner found four critical remote code execution bugs among 16 Windows flaws, including issues in the kernel TCP/IP stack and IKEv2 service.

By Sean Mitchell 4 min read Last week
Cycode launches agentic development lifecycle security
Application Security

Cycode launches agentic development lifecycle security

Security teams face new risks from AI coding tools as Cycode adds controls for prompts, generated code and unauthorised model use.

By Sean Mitchell 4 min read Last week
CyberCX report finds 29% of tests exposed severe flaws
Digital Transformation

CyberCX report finds 29% of tests exposed severe flaws

AI systems and social engineering tests proved especially risky, as CyberCX found severe weaknesses in half and 77% of cases respectively.

By Sean Mitchell 4 min read Last week
Synack launches Sara AI Pentesting for wider coverage
Data Protection

Synack launches Sara AI Pentesting for wider coverage

The move aims to widen security coverage as firms struggle to test expanding attack surfaces quickly enough.

By Joseph Gabriel Lagonsin 4 min read This month
CrowdStrike widens QuiltWorks & launches Defender hunting
Endpoint Protection

CrowdStrike widens QuiltWorks & launches Defender hunting

Enterprises using Microsoft Defender will get round-the-clock human-led threat hunting, as CrowdStrike also broadens its AI risk coalition across partners.

By Joseph Gabriel Lagonsin 4 min read This month
Intruder launches AI pentesting for faster validation
DevOps

Intruder launches AI pentesting for faster validation

Security teams can now validate scanner findings in minutes as Intruder rolls out AI agents to cut false positives and speed remediation.

By Catherine Knowles 3 min read This month
Intruder launches AI pentesting to cut vulnerability triage
DevOps

Intruder launches AI pentesting to cut vulnerability triage

Security teams can now validate scanner alerts in minutes as Intruder’s new AI agents cut false positives and speed up triage.

By Sofiah Nichole Salivio 4 min read Last month
API attacks surge as AI exposure raises cyber risk
Data Protection

API attacks surge as AI exposure raises cyber risk

API-related breaches now cost organisations more than USD $700,000 on average, as AI-linked interfaces draw fresh hacker attention.

By Sofiah Nichole Salivio 4 min read Last month
AI flaws & supply-chain risks top new pentesting report
Data Protection

AI flaws & supply-chain risks top new pentesting report

Three-quarters of organisations now see third-party software as a top risk, as AI flaws and supply-chain gaps slow security fixes.

By Joseph Gabriel Lagonsin 4 min read Last month
HackerOne launches h1 Validation to tackle AI flaws
DevOps

HackerOne launches h1 Validation to tackle AI flaws

Rising AI-generated vulnerability reports are leaving security teams with record backlogs and only hours to judge which flaws hackers can exploit.

By Catherine Knowles 4 min read Last month
LangWatch launches open-source tool for AI red-teaming
Data Protection

LangWatch launches open-source tool for AI red-teaming

The framework is designed to expose hidden risks in production AI systems that can be missed by conventional one-off tests.

By Sean Mitchell 4 min read Last month

Stories from Other Regions

Security testing stories

White Rook Cyber wins CREST accreditation for testing
Firewalls

White Rook Cyber wins CREST accreditation for testing

Procurement teams in defence and critical infrastructure may now view White Rook Cyber more favourably after its CREST testing approval.

By Shannon Williams 4 min read Last month