SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
New Zealand

Offensive Security Stories - Page 2

Global Stories

Offensive Security stories

HackerOne launches h1 Validation to tackle AI flaws
DevOps

HackerOne launches h1 Validation to tackle AI flaws

Rising AI-generated vulnerability reports are leaving security teams with record backlogs and only hours to judge which flaws hackers can exploit.

By Catherine Knowles 4 min read Last month
LangWatch launches open-source tool for AI red-teaming
Data Protection

LangWatch launches open-source tool for AI red-teaming

The framework is designed to expose hidden risks in production AI systems that can be missed by conventional one-off tests.

By Sean Mitchell 4 min read Last month
FIRST conference highlights AI & CVE disclosure push
IoT Security

FIRST conference highlights AI & CVE disclosure push

Pressure is growing on AI vendors and software suppliers to improve vulnerability disclosure as experts warn basic CVE details are no longer enough.

By Joseph Gabriel Lagonsin 3 min read Last month
TrendAI partners Anthropic to embed Claude in security ops
Firewalls

TrendAI partners Anthropic to embed Claude in security ops

Security teams will get Claude tools inside TrendAI Vision One as the firms target AI-driven attacks and faster incident response.

By Mark Tarre 4 min read Last month
Synack launches Glasswing readiness test for attack gaps
Firewalls

Synack launches Glasswing readiness test for attack gaps

Offensive AI is widening exposure gaps for firms that test only a third of their attack surfaces on average, Synack says.

By Sean Mitchell 4 min read Last month
Abacus wins CREST approval for penetration testing
Firewalls

Abacus wins CREST approval for penetration testing

Boards in regulated sectors now have firmer assurance after Abacus secured CREST approval for penetration testing, renewed annually.

By Joseph Gabriel Lagonsin 3 min read Last month
Claude Code flaw leaves deny rules vulnerable in long workflows
Cloud Security

Claude Code flaw leaves deny rules vulnerable in long workflows

Security researchers say long automated jobs can make Claude Code’s deny rules fall back to user prompts, weakening protections in CI/CD pipelines.

By Kaleah Salmon 8 min read Last month
Novee launches AI red teaming tool for LLM app risks
DevOps

Novee launches AI red teaming tool for LLM app risks

Security teams now have a beta tool to probe large language model apps for prompt injection, jailbreaks and data theft before attackers do.

By Mark Tarre 4 min read Thu, 26th Mar 2026
Qualys launches Agent Val to prove exploitable risks
Security Operations Centres

Qualys launches Agent Val to prove exploitable risks

Qualys debuts Agent Val to validate real exploit paths in live systems, promising sharply reduced noise and faster remediation for teams.

By Shannon Williams 4 min read Wed, 25th Mar 2026
Qualys launches Agent Val for live exploit validation
DevOps

Qualys launches Agent Val for live exploit validation

Qualys rolls out Agent Val to live‑test exploit paths in production, promising sharper risk prioritisation and major remediation noise cuts.

By Joseph Gabriel Lagonsin 4 min read Tue, 24th Mar 2026
Simbian launches AI platform for unified cyber ops
DevOps

Simbian launches AI platform for unified cyber ops

Simbian unveils an AI-driven cyber security platform uniting offence and defence via a shared Context Lake to speed, link and automate response.

By Sean Mitchell 5 min read Fri, 20th Mar 2026
Cobalt adds AI features to boost continuous pentests
DevOps

Cobalt adds AI features to boost continuous pentests

Cobalt weaves AI into its pentesting platform, automating recon and triage while keeping human experts on complex attack paths.

By Joseph Gabriel Lagonsin 4 min read Fri, 20th Mar 2026
Cobalt unveils service to manage enterprise pentesting
DevOps

Cobalt unveils service to manage enterprise pentesting

Cobalt launches Security Program Manager service to run enterprise pentesting, align tests with business goals and speed up remediation.

By Joseph Gabriel Lagonsin 4 min read Fri, 20th Mar 2026
NetSPI unveils AI-led workflow redesign for pentesting
DevOps

NetSPI unveils AI-led workflow redesign for pentesting

NetSPI unveils an AI-powered overhaul of its pentesting platform UX, promising two-click workflows and sharper risk-based remediation focus.

By Catherine Knowles 3 min read Fri, 20th Mar 2026
HackerOne unveils live agentic AI prompt injection tests
Data Protection

HackerOne unveils live agentic AI prompt injection tests

HackerOne launches live Agentic Prompt Injection Testing to expose real-world AI exploit paths as prompt injection threats surge 540%.

By Catherine Knowles 4 min read Thu, 19th Mar 2026
AI agent from Tenzai ranks in top 1% of global CTFs
DevOps

AI agent from Tenzai ranks in top 1% of global CTFs

Tenzai's autonomous AI agent has placed in the top 1% of major global hacking CTF contests, beating more than 125,000 human rivals.

By Sofiah Nichole Salivio 4 min read Thu, 19th Mar 2026
Cloud identity compromise now drives most cyber attacks
Malware

Cloud identity compromise now drives most cyber attacks

Cloud identity compromise now drives over 80% of cyber incidents, as attackers increasingly abuse trusted accounts and workplace tools.

By Shannon Williams 4 min read Fri, 13th Mar 2026

Stories from Other Regions

Offensive Security stories

Firms test just 32% of attack surface, study finds
DevOps

Firms test just 32% of attack surface, study finds

Organisations test just a third of their attack surface as reliance on agentic AI grows, raising fresh concerns over unseen cyber risks.

By Shannon Williams 4 min read Fri, 20th Mar 2026