Security testing stories

Terra Security becomes first AWS partner validated for Autonomous Security Validation, as AI-driven continuous threat testing gains pace.

New research from Cobalt finds 98% of surveyed pentesters prefer PTaaS to bug bounties and show almost no faith in AI-only security scanning.

Archipelo and Checkmarx partner to fuse dev workflow signals with app security scans, giving teams origin evidence to prioritise fixes.

Cyber consultancy Reversec has named former Accenture executive Åse Holmberg Zetterlund as CEO to drive its next phase of global expansion.

F5 Labs launches monthly AI security leaderboards, ranking popular models on new indices of risk, resilience and cost under live attack.

Anthropic unveils Claude Code Security, an AI tool that scans codebases for complex bugs, verifies risks and suggests patches for developers.

Horizon3.ai appoints defence veteran Dan Bird MBE as EMEA field CTO to sharpen offensive security amid rising regional cyber threats.

Simbian launches an AI Pentest Agent that runs continuous, adaptive penetration tests, promising faster, context-aware vulnerability detection.

Red Helix has appointed veteran technologist Simon Michie to lead its Risk Crew cyber governance and assurance unit amid rising scrutiny.

Bitget and BlockSec launch a UEX Security Standard, urging provable, system-wide safeguards for unified multi-asset trading platforms.

Guardsquare snaps up Verimatrix's XTD tech, adding real-time mobile threat detection and response to its end-to-end app security platform.

ENCS and DIVD have agreed a new cyber pact to uncover and disclose vulnerabilities in Europe's high-impact energy and critical systems.

AI-fuelled cyberattacks overwhelm defenders as false positives swamp security teams and critical threats slip through in 2026, Hadrian warns.

AI security fears and rapid release cycles are pushing firms to demand faster, deeper pentesting - and many are ready to ditch existing vendors.

Veracode upgrades its Package Firewall and testing tools to block malicious software packages before they enter development pipelines.

HackerOne launches Agentic PTaaS, blending AI agents with human experts to deliver continuous, always-on penetration testing for enterprises.

AI-driven cloud adoption is forcing firms to swap static privacy checklists for continuous, real-time defence of sensitive data flows.

Radware acquires Pynt to add pre-production testing and deliver unified lifecycle API security from design through to runtime defence.

New UK cyber bill pushes critical sectors towards continuous offensive security testing as state-backed and criminal threats intensify.

GlobalLogic and Elektrobit are deepening their 15-year alliance to accelerate software-defined vehicles, safety, cyber security and HPC.