A series of vulnerabilities, known as IngressNightmare (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974), have been identified in ingress-nginx, a widely used Kubernetes...
Read more →
The Intigriti team have recently observed an abuse scenario, trending across the industry, where malicious actors are posing as legitimate...
Read more →
Modern organizations are becoming increasingly reliant on agentic AI, and for good reason: AI agents can dramatically improve efficiency and...
Read more →
Most organizations are using AI in some way today, whether they know it or not. Some are merely beginning to...
Read more →
If you are a mature organization, you might manage an external IP block of 65,000 IP addresses (equivalent to a...
Read more →
We can’t stop learning fundamentals just because tech can do them February 28, 2025 Not learning to code just because...
Read more →
Large-scale operations and the extensive attack surface of the retail industry render it particularly susceptible to cybercrime, on a global...
Read more →
Amelia Coen | 13 March 2025 at 08:49 UTC Security is a team sport. Whether you’re a pentester, bug bounty...
Read more →
Katie Warren | 12 March 2025 at 13:30 UTC Why now? Artificial intelligence is rapidly transforming industries, and security testing...
Read more →
XML External Entity (XXE) vulnerabilities are one of the most overlooked yet impactful vulnerabilities in modern web applications. Although they’ve...
Read more →
We are excited to announce Detectify Alfred, a revolutionary system that uses AI to completely autonomously collect and prioritize threat...
Read more →
SSRF—short for Server-Side Request Forgery—vulnerabilities are amongst one of the most impactful web security vulnerabilities. Even though they are less...
Read more →