Attack Surface Management

Your Login Page Is Lying: What AI Agents Find When They Read Your Frontend

Your Login Page Is Lying: What AI Agents Find When They Read Your Frontend

| | AI Security, Application Security, Attack Surface Management, Offensive Security, Red Team, security insights, Tools & Techniques, Vulnerability Research
TL;DR: Single-page applications ship their entire frontend codebase to every visitor, including unauthenticated ones. Even a login page with no visible functionality delivers JavaScript bundles containing route definitions, API endpoint URLs, authentication ...
Offensive Security Blog: Latest Trends in Hacking | Praetorian

Hadrian Launches Nova, an Agentic Pentesting Solution for Continuous External Attack Validation

| | Agentic AI, Attack Surface Management, Hadrian, Penetration Testing, RSAC 2026
Hadrian has launched Nova, an agentic pentesting solution that extends its external exposure management platform with on-demand, autonomous penetration testing capabilities. The announcement was made at RSAC 2026 in San Francisco. Nova ...
remote, ZTNA, security, zero-trust architecture, organization, zero-trust, trust supply chain third-party

Security Architecture for Hybrid Work: Enterprise Guide 

| | Attack Surface Management, BYOD Risks, CASB, cloud access security broker, EDR, endpoint detection and response, Hybrid Work Security Architecture, Least Privilege Principle, network segmentation, Next Generation Firewall, NGFW, Remote Workforce Protection, SASE, secure SD-WAN, Secure Web Gateway, Security Automation, SIEM, SOAR, SWG, zero trust network access, ZTNA
With 52% of U.S. employers adopting hybrid models, traditional perimeters are failing. Discover how to build a robust hybrid work security architecture using Secure SD-WAN, SASE, Zero Trust Network Access (ZTNA), and ...
Security Boulevard
LLMs, AI, cyberattacks, access, identity, 1Password, Exabeam, LogRhythm, GenAI, censorship, model, RBAC, secure, Fortinet, SASE, Opal, access privileges, cloud security, GenAI, generative AI cloud compromise LLM

Dormant Accounts Leave Manufacturing Orgs Open to Attack 

| | Attack Surface Management, BeyondTrust, Contextual Authentication, Corporate Offboarding, credential stuffing, Deprovisioning Risk, Dormant Accounts, Identity Debt, identity governance, just-in-time access, Keeper Security, least privilege, Manufacturing Cybersecurity, Passwordless Architecture, Pathmark Report 2026, Privileged access management, Risk-Based Authentication, separation of duties, Stale Credentials, User Provisioning Automation
While companies use "perp walks" for terminated employees, 48% of manufacturers fail to revoke digital access within 24 hours. Explore the growing risk of dormant accounts, the 74% automation gap in provisioning, ...
Security Boulevard
⚠

Mapping the Unknown: Introducing Pius for Organizational Asset Discovery

| | Attack Surface Management, Offensive Security, open source, Open Source Tools, Red Team, Tools & Techniques, Uncategorized
Asset discovery is an essential part of Praetorian’s service delivery process. When we are engaged to carry out continuous external penetration testing, one key action is to build and maintain a thorough ...
Offensive Security Blog: Latest Trends in Hacking | Praetorian
AI technology, security, AI security, visibility, insights, security platform, Arctic Wolf, zero-trust encrypted AI Trend Micro cybersecurity poverty line, data-centric, SUSE cloud Wiz Torq AirTag Skyhawk SASE security cloud security visibility PwC Survey Finds C-Level Execs Now View Cybersecurity as Biggest Risk

Check Point Unveils a New Security Strategy for Enterprises in the AI Age

| | agentic AI security, AI arms race in cybersecurity, AI Security, Attack Surface Management, Check Point, CrowdStrike, Cyata, Cyclops, shadow IT
Check Point is rolling out a new four-pillar cybersecurity strategy to give security teams an edge in the ongoing AI arms race with threat actors and is making three acquisitions that will ...
Security Boulevard
Chief Enterprise Intelligence Officer

Asset Intelligence as Context Engineering for Cybersecurity Operations

| | AI in security, asset intelligence, Attack Surface Management, cybersecurity operations, security context
Action depends on truth. Truth is hard to come by. There’s an old trope: “You can’t protect what you can’t see.” This burning need for total visibility has led to an abundance ...
Security Boulevard
NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm

NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm

| | Attack Surface Management, Cybersecurity, NCC Group, Qualys
NCC Group this week revealed it has allied with Qualys to expand the scope of its managed attack surface management (ASM) services to address instances of shadow IT. Amber Mitchell, lead product ...
Security Boulevard
vulnerability, patch, Cisco, flaw, patch, vulnerabilities, Cato, patch, automation, patch management, Action1 patching cyberattacks JumpCloud patching

Why We’ll Never Patch Everything, and That’s Okay 

| | asset management, Attack Surface Management, CVSS, CVSS vs risk, cyber hygiene, Cyber Risk Management, enterprise cybersecurity strategy, epss, exploitability, KEV, Known Exploited Vulnerabilities, patch management, Patch Tuesday, risk-based vulnerability management, Security Configuration Management, Vulnerability Management, vulnerability prioritization, Vulnerability Remediation
Why fixing every vulnerability is impossible—and unnecessary. Learn how risk-based vulnerability management prioritizes what to patch, what to defer, and why context matters more than CVSS ...
Security Boulevard
Bugcrowd Puts Defenders on the Offensive With AI Triage Assistant 

Bugcrowd Puts Defenders on the Offensive With AI Triage Assistant 

| | AI analytics, AI Connect, AI in Cybersecurity, AI-powered cyberattacks, Attack Surface Management, bug bounty platform, cybersecurity AI, enterprise security, ethical hacking, Generative AI Security, MCP, Mean Time to Remediate, Model Context Protocol, MTTR, preemptive security, security analytics, Security Automation, Security Triage, Threat Intelligence, Time to Exploit, TTE, Vulnerability Management, vulnerability-analysis
Bugcrowd unveils AI Triage Assistant and AI Analytics to help security teams proactively defend against AI-driven cyberattacks by accelerating vulnerability analysis, reducing MTTR, and enabling preemptive security decisions ...
Security Boulevard
Load more