Collecting Cyber-News from over 60 sources

Tag: RedTeam

8 things CISOs have learned from cyber incidents

Jun 11, 2025 9:55 AM

Tags: apt, attack, authentication, backup, breach, business, ciso, compliance, cyber, data, defense, detection, endpoint, exploit, incident, incident response, infection, insurance, jobs, malicious, malware, metric, network, ransom, ransomware, RedTeam, risk, skills, tool, training, update, virus, vulnerability, vulnerability-management, zero-trust

2. You’ll need shift from defense to offence: The role and the CISO won’t be the same after an incident.”My job on December 11 was very different from my job on December 12 and beyond, says Brown.Following an incident, some organizations need to change to such an extent that they need a different CISO with…
Dumping Entra Connect Sync Credentials

Jun 10, 2025 5:55 AM

Tags: access, attack, authentication, credentials, crypto, data, detection, identity, login, microsoft, password, RedTeam, service, sql, theft, update

Recently, Microsoft changed the way the Entra Connect Connect Sync agent authenticates to Entra ID. These changes affect attacker tradecraft, as we can no longer export the sync account credentials; however, attackers can still take advantage of an Entra Connect sync account compromise and gain new opportunities that arise from the changes. How It Used To Work…
What is AI Red Teaming?

Jun 9, 2025 11:54 PM

Tags: ai, application-security, RedTeam

Stay updated on the latest in application security with the OWASP Top 10 vulnerabilities. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/06/what-is-ai-red-teaming/
OffensiveCon25 Fighting Cavities: Securing Android Bluetooth By Red Teaming

Jun 3, 2025 1:54 AM

Tags: android, cisa, conference, penetration-testing, RedTeam

Author/Presenter: Jeong Wook Oh, Rishika Hooda and Xuan Xing Our sincere appreciation to OffensiveCon by Binary Gecko, and the Presenters/Authors for publishing their outstanding OffensiveCon 2025 video content. Originating from the conference’s events located at the Hilton Berlin; and via the organizations YouTube channel. Thanks and a Tip O’ The Hat to Verification Labs ::…
Getting the Most Value Out of the OSCP: After the Exam

Jun 2, 2025 10:54 PM

Tags: access, attack, automation, bug-bounty, business, cloud, compliance, conference, control, corporate, credentials, cyber, cybersecurity, data, data-breach, defense, detection, exploit, finance, flaw, framework, google, governance, group, guide, hacker, hacking, incident response, infosec, injection, intelligence, Internet, iran, jobs, kali, linkedin, linux, malicious, malware, microsoft, mobile, network, office, open-source, penetration-testing, powershell, privacy, RedTeam, reverse-engineering, risk, service, skills, soc, social-engineering, sql, strategy, stuxnet, technology, threat, tool, training, update, vulnerability, windows

In the final post of this series, I’ll discuss what to do after your latest exam attempt to get the most value out of your OSCP journey. DISCLAIMER: All opinions expressed in this article are solely my own. I have reviewed the content to ensure compliance with OffSec’s copyright policies and agreements. I have not been…
Woodpecker: Red Teaming Tool Targets AI, Kubernetes, and API Vulnerabilities

May 29, 2025 10:55 AM

Tags: ai, api, cyber, cyberattack, hacker, kubernetes, open-source, RedTeam, tool, vulnerability

Operant AI has announced the release of Woodpecker, an open-source automated red teaming engine designed to make advanced security testing accessible to organizations of all sizes. Traditionally, red teaming”, simulated cyberattacks conducted by ethical hackers to uncover vulnerabilities”, has been a privilege reserved for large enterprises with significant security budgets. With Woodpecker, Operant AI aims…
Threat Actors Weaponizing DCOM to Harvest Credentials on Windows Systems

May 28, 2025 3:55 PM

Tags: access, credentials, cyber, defense, detection, endpoint, microsoft, RedTeam, service, threat, windows

Threat actors are now leveraging the often-overlooked Component Object Model (COM) and its distributed counterpart, Distributed Component Object Model (DCOM), to harvest credentials on Windows systems. As traditional red team methods like direct access to the Local Security Authority Subsystem Service (LSASS) face heightened scrutiny from Microsoft’s enhanced defenses and advanced Endpoint Detection and Response…
Woodpecker: Open-source red teaming for AI, Kubernetes, APIs

May 28, 2025 7:54 AM

Tags: ai, api, kubernetes, open-source, RedTeam, tool

Woodpecker is an open-source tool that automates red teaming, making advanced security testing easier and more accessible. It helps teams find and fix security weaknesses in … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/05/28/woodpecker-open-source-red-teaming/
Operant AI Launches Open-Source Red Teaming Tool for AI and Cloud Security

May 22, 2025 10:54 PM

Tags: ai, cloud, open-source, RedTeam, tool

First seen on scworld.com Jump to article: www.scworld.com/brief/operant-ai-launches-open-source-red-teaming-tool-for-ai-and-cloud-security
8 KI-Sicherheitsrisiken, die Unternehmen übersehen

May 20, 2025 4:54 PM

Tags: access, ai, api, application-security, authentication, cisco, ciso, compliance, cyber, cyberattack, cybersecurity, data, data-breach, framework, governance, hacker, injection, LLM, RedTeam, risk, risk-management, security-incident, software, threat, tool, vulnerability

In ihrem Wettlauf um Produktivitätssteigerungen durch generative KI übersehen die meisten Unternehmen die damit verbundenen Sicherheitsrisiken.Laut einer Studie des Weltwirtschaftsforums, die in Zusammenarbeit mit Accenture durchgeführt wurde, versäumen es 63 Prozent der Unternehmen, die Sicherheit von KI-Tools vor deren Einsatz zu überprüfen. Dadurch gehen sie eine Reihe von Risiken für ihr Unternehmen ein.Dies gilt sowohl…
8 security risks overlooked in the rush to implement AI

May 19, 2025 10:54 AM

Tags: access, ai, api, application-security, attack, authentication, business, ciso, compliance, control, cyber, data, data-breach, exploit, flaw, framework, governance, hacker, injection, leak, LLM, malicious, monitoring, network, privacy, RedTeam, regulation, risk, risk-assessment, risk-management, software, strategy, threat, tool, training, unauthorized, vulnerability

Data exposure AI systems often process large volumes of sensitive information, and without robust testing, organizations may overlook how easily this data can be leaked, either through unsecured storage, overly generous API responses, or poor access controls.”Many AI systems ingest user data during inference or store context for session persistence,” says Dr. Peter Garraghan, chief…
BSidesLV24 GroundFloor Rolling Out The C2: A Take On Modern Red Team Infrastructure

May 17, 2025 6:54 AM

Tags: conference, infrastructure, RedTeam

Author/Presenter: George Polivka & Unnamed User Our sincere appreciation to BSidesLV, and the Presenters/Authors for publishing their erudite Security BSidesLV24 content. Originating from the conference’s events located at the Tuscany Suites & Casino; and via the organizations YouTube channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/bsideslv24-groundfloor-rolling-out-the-c2-a-take-on-modern-red-team-infrastructure/
Security tests reveal serious vulnerability in government’s One Login digital ID system

May 17, 2025 12:54 AM

Tags: attack, cyber, detection, government, identity, login, RedTeam, vulnerability

A ‘red teaming’ exercise to simulate cyber attacks on the government’s flagship digital identity system has found that One Login can be compromised without detection First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366623991/Security-tests-reveal-serious-vulnerability-in-governments-One-Login-digital-ID-system
Cyber Defenders Save the Country of Berylia – Once Again!

May 14, 2025 3:38 PM

Tags: advisory, blueteam, ciso, country, cyber, RedTeam

CISO Joe Carson on How NATO’s Locked Shields Sharpens Defenders for the Next Attack. Each year, the tiny northern Atlantic Ocean island country of Berylia comes under a massive cyberattack. It’s all part of one of the world’s largest red team-blue team exercises called Locked Shields, which has attracted thousands of cyber professionals including Joe…
Increase Red Team Operations 10X with Adversarial Exposure Validation

May 13, 2025 5:38 PM

Tags: attack, defense, penetration-testing, RedTeam

Red teams uncover what others miss, but they can’t be everywhere, all the time. Adversarial Exposure Validation combines BAS + Automated Pentesting to extend red team impact, uncover real attack paths, and validate defenses continuously. Learn more from Picus Security on how AEV can help protect your network. First seen on bleepingcomputer.com Jump to article:…
12 most innovative launches at RSA 2025

May 5, 2025 8:49 AM

Tags: ai, attack, awareness, ciso, cloud, communications, compliance, control, cyber, cybersecurity, data, deep-fake, detection, email, endpoint, finance, framework, governance, healthcare, identity, insurance, intelligence, login, malicious, network, nist, open-source, openai, phishing, privacy, RedTeam, resilience, risk, risk-analysis, risk-management, saas, service, siem, social-engineering, tactics, threat, tool, training, update, zero-day, zero-trust

AuditBoard: AI governance solution: AuditBoard announced its AI governance solution, designed to help organizations accelerate AI risk management and promote responsible AI adoption. The solution is designed to streamline AI use case intake, review, and approval processes, establish a centralized repository for approved AI models, and dynamically link AI risks to vendors, assets, and controls…
CISO vs CFO: why are the conversations difficult?

May 5, 2025 8:49 AM

Tags: ai, attack, breach, business, ciso, compliance, cyber, cyberattack, cybersecurity, finance, insurance, jobs, metric, ransomware, RedTeam, risk, risk-management, saas, strategy, technology, threat, tool

might happen, which often means the best outcome is nothing happens. That’s a tough sell.”Although a single cyberattack can wipe out millions of dollars, CFOs and CISOs often approach cybersecurity from fundamentally different perspectives. Bridging this divide requires more than just better communication, it demands, as Argyle put it, a shift in mindset. The disconnect…
Red Teaming AI: Tackling New Cybersecurity Challenges

May 3, 2025 12:50 AM

Tags: access, ai, cybersecurity, RedTeam, risk, threat, tool

DistributedApps.ai’s Ken Huang on Agentic AI Risks and Threat Modeling. As AI agents gain autonomy and access dynamic tools, organizations must adopt new threat modeling approaches like mixture threat modeling, a new method that accounts for AI’s unpredictability, said Ken Huang, chief AI officer at DistributedApps.ai. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/red-teaming-ai-tackling-new-cybersecurity-challenges-a-28235
Cybersecurity Snapshot: CISA’s Best Cyber Advice on Securing Cloud, OT, Apps and More

May 2, 2025 6:50 PM

Tags: access, ai, attack, authentication, best-practice, breach, business, cisa, ciso, cloud, computer, control, credentials, cyber, cybersecurity, data, defense, detection, encryption, exploit, firewall, flaw, framework, government, guide, hacker, iam, identity, incident, incident response, infrastructure, injection, international, Internet, iot, kubernetes, login, mfa, microsoft, mitigation, mitre, network, nist, open-source, organized, password, phishing, programming, RedTeam, risk, risk-management, sbom, service, software, sql, supply-chain, tactics, technology, threat, tool, unauthorized, update, usa, vulnerability, vulnerability-management, windows, xss, zero-day

In this special edition of the Cybersecurity Snapshot, we’re highlighting some of the most valuable guidance offered by the U.S. Cybersecurity and Infrastructure Security Agency in the past 12 months. Check out best practices, recommendations and insights on protecting your cloud environments, OT systems, software development processes and more. In case you missed it, here’s…
Realitätsnahe Angriffssimulation als Service

Apr 29, 2025 2:52 PM

Tags: cybersecurity, hacker, RedTeam, service

Der Spezialist für Crowdsourced-Cybersecurity, Bugcrowd, hat einen neuen Service vorgestellt, der die Skalierbarkeit, Agilität und den anreizgesteuerten Ansatz des Crowdsourcing auf Red-Teaming anwendet. Dieser neue Service verbindet Kunden mit einem globalen Netzwerk geprüfter ethischer Hacker für eine Vielzahl von Red-Team-Einsätzen vollständig verwaltet über die Bugcrowd-Plattform. Dies ermöglicht es Organisationen, ihre Sicherheitsumgebungen mit höchstem Vertrauen […]…
The state of intrusions: Stolen credentials and perimeter exploits on the rise, as phishing wanes

Apr 29, 2025 11:52 AM

Tags: access, apt, attack, authentication, awareness, backdoor, breach, business, china, cloud, control, corporate, credentials, crypto, cyber, cyberespionage, cybersecurity, data, email, espionage, exploit, extortion, finance, fraud, group, Hardware, incident response, infection, ivanti, jobs, law, lockbit, malicious, malware, mandiant, mfa, middle-east, mobile, network, north-korea, oracle, password, phishing, ransom, ransomware, RedTeam, russia, social-engineering, software, theft, threat, tool, training

Financial gains, data theft, dwell time: Of the intrusions Mandiant investigated in 2024, 35% were financially motivated, with ransomware alone representing 21% of all intrusions, according to the company’s data.Financial gains were realized via data theft for the purpose of extortion, cryptomining, cryptocurrency theft, business email compromise, and cases in which attackers monetized their access…
Bugcrowd Unveils Crowdsourced Red Team-as-a-Service Offering at RSA

Apr 28, 2025 9:52 PM

Tags: RedTeam, service

First seen on scworld.com Jump to article: www.scworld.com/news/bugcrowd-unveils-crowdsourced-red-team-as-a-service-offering-at-rsa
Bugcrowd Launches Red Team Service to Test Cybersecurity Defenses

Apr 28, 2025 8:51 PM

Tags: conference, cybersecurity, defense, network, RedTeam, service

Bugcrowd today at the 2025 RSA Conference announced its intent to create a red team service to test cybersecurity defenses using a global network of ethical hackers. Alistair Greaves, director of red team operations for Bugcrowd, said via a Red Team-as-a-Service (RTaaS) offering that a global pool of experts vetted by Bugcrowd will employ the..…
CISOs no closer to containing shadow AI’s skyrocketing data risks

Apr 17, 2025 10:28 AM

Tags: access, ai, authentication, awareness, best-practice, breach, business, ceo, chatgpt, ciso, compliance, computer, control, cybersecurity, data, data-breach, detection, finance, framework, github, google, governance, group, jobs, law, leak, LLM, mitigation, monitoring, privacy, RedTeam, regulation, risk, risk-management, service, software, technology, theft, tool, training, unauthorized, vulnerability

While most organizations (90%) offer sanctioned generative AI apps and even more (98%) offer their users apps that incorporate gen AI features, unauthorized use of AI services is skyrocketing in business, according to a study by Netskope.Most gen AI use in the enterprise (72%) is shadow IT, driven by individuals using personal accounts to access…
In a Social Engineering Showdown: AI Takes Red Teams to the Mat

Apr 16, 2025 10:28 AM

Tags: ai, RedTeam, social-engineering

That AI has gotten much more proficient in social engineering is a revelation that’s not surprising, but still sets alarm bells ringing. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/in-a-social-engineering-showdown-ai-takes-red-teams-to-the-mat/
Agentic AI is both boon and bane for security pros

Apr 15, 2025 9:28 AM

Tags: access, ai, attack, authentication, cctv, ciso, cloud, conference, control, data, framework, governance, guide, hacker, identity, law, lessons-learned, linux, LLM, microsoft, RedTeam, risk, service, soc, software, strategy, technology, threat, tool, vmware, vulnerability

Recent agentic security signposts: Recently, we have seen numerous examples of how quickly building your own autonomous AI agents has taken root. Microsoft last month demonstrated six new AI agents that work with its Copilot software that talk directly to its various security tools to identify vulnerabilities, flag identity and asset compromises. Simbian is hosting…
An inside look at Microsoft’s AI Red Team

Apr 10, 2025 10:05 PM

Tags: ai, microsoft, RedTeam

First seen on scworld.com Jump to article: www.scworld.com/perspective/an-inside-look-at-microsofts-ai-red-team
Top 16 OffSec, pen-testing, and ethical hacking certifications

Apr 10, 2025 1:05 PM

Tags: access, android, antivirus, application-security, attack, authentication, blockchain, bug-bounty, business, cisco, cloud, computing, credentials, crypto, cryptography, cyber, cybersecurity, data, defense, detection, encryption, exploit, guide, hacker, hacking, incident response, injection, iot, jobs, kali, linux, malware, microsoft, mitigation, mobile, network, penetration-testing, RedTeam, remote-code-execution, reverse-engineering, risk, risk-assessment, sap, skills, sql, technology, threat, tool, training, update, vulnerability, windows

Experiential learning Offensive security can’t be fully mastered through lectures alone. Candidates need hands-on training in lab environments to develop practical skills. Ideally, certification exams should include a practical assessment, such as developing an exploit to compromise a system.Because individuals learn OffSec techniques, such as penetration testing, in different ways, the most effective certifications offer…
‘RemoteMonologue’ New Red Team Technique Exploits DCOM To Steal NTLM Credentials Remotely

Apr 10, 2025 9:05 AM

Tags: credentials, cyber, detection, endpoint, exploit, malicious, ntlm, RedTeam, service, theft

A sophisticated new red team technique dubbed >>RemoteMonologue
AI Outsmarts Human Red Teams in Phishing Tests

Apr 8, 2025 1:42 AM

Tags: ai, attack, cybersecurity, phishing, RedTeam, service, spear-phishing, training

Hoxhunt Predicts Phishing-as-a-Service Will Adopt AI Spear Phishing Agents. AI surpassed human red teams in crafting phishing attacks, at scale and with alarming success, asserts research from cybersecurity training firm Hoxhunt. The company’s proprietary AI spear phishing agent, outperformed human counterparts by 24%, a turnaround from a31% deficit in 2023. First seen on govinfosecurity.com Jump…