Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Shadow IT has evolved from an occasional nuisance to a pervasive security challenge that affects every organization. These unauthorized applications, services, and devices operating outside of IT oversight create blind spots in your security posture that attackers are increasingly exploiting. But here’s the reality: your employees aren’t trying to undermine security.

2025 has been a summer of high-profile breaches. This post will focus on four notable and high-profile victims: Chanel, Google, Air France, and KLM. Although the companies and exact data sets differ, these breaches share a clear pattern: attackers compromised third-party CRM / customer-service platforms as part of a wider Salesforce-focused vishing/social-engineering campaign. From there, they exfiltrated customer-care records such as contact details, loyalty IDs, and customer-service email content.

In today’s hyperconnected world, a single misleading LinkedIn or X post gone viral can cause problems for the most well established brand in a matter of minutes. Digital Risk Protection plays a vital role in uncovering and neutralizing these hidden dangers before they escalate. We’ll run through some real-world examples with Outpost24’s CompassDRP solution to show how you can proactively monitor for social media threats before they damage your brand.

Researchers believe AI tools are fueling a dramatic 42% surge in the amount of leaked credentials circulating for sale on the dark web. Each year, automated scrapers and human-operated groups comb through dark web forums, paste sites, and underground marketplaces to collect and repackage hundreds of millions of username–password pairs. Many organizations remain unaware of the full scope of these leaks until it’s too late, because breach disclosures are often delayed or incomplete.

It’s become pretty standard to expect the help of AI with automating tasks, with penetration testing being no exception. As AI-driven tools grow more sophisticated, some have posed the question: could these systems render the traditional human pen tester obsolete entirely? We’ll explore the strengths and limitations of AI when it comes to offensive security and predict the role human red team expertise still has to play in an increasingly automated world.

Outpost24’s threat intelligence researchers have been analyzing a corporate database seller known as “Lionishackers”. They’re a financially motivated threat actor focused on exfiltrating and selling corporate databases. This post explores how they operate, where their attacks are taking place, and the current level of threat they pose.

Social media can work both for and against an organization, so it’s worth treating these sites as extensions of your attack surface. CompassDRP’s Social Media integration continuously monitors both corporate and employee profiles across platforms such as Twitter, LinkedIn, and Facebook. It automatically flags unauthorized or impersonating accounts that mimic executive identities or misuse company branding, helping to thwart phishing and fraud campaigns before they gain traction.

It’s tempting to view bug bounty programs as a cheat code – an enticing shortcut to uncover vulnerabilities by tapping into the creativity of the global security community. Is there really any to invest in your own testing for vulnerabilities? But while these programs can surface critical flaws that traditional testing might miss, they’re inherently reactive and can be limited in scope.

In June 2025, Israel carried out airstrikes against key Iranian military and nuclear facilities. Iran swiftly retaliated, escalating regional tensions to unprecedented levels. This military confrontation has not only unfolded in conventional warfare but also triggered a massive surge in cyber operations. Almost immediately after the kinetic attacks, numerous hacktivist groups began launching cyberattacks primarily targeting Israel and its international allies.

I recently discovered an interesting race condition vulnerability in the eCommerce software nopCommerce, during a manual pen test as part of the SWAT service (SWAT is Outpost24’s Pen Testing as a Service solution). This vulnerability (CVE-2024-58248) involves nopCommerce, an open-source eCommerce platform written in C#, which aids developers in building online stores. When exploited, it allows an attacker user to redeem a gift card multiple times by using a technique called a single-packet attack.