The Hacker News

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

ServiceNow fixed CVE-2025-12420, a critical flaw that let unauthenticated attackers impersonate users on its AI Platform.
GitHub

fairy-root/drm-pentesting-toolkit

A comprehensive, modular, plugin-based DRM pentesting toolkit with a modern CustomTKinter GUI. The toolkit supports device and credentials profile management, plugin stacking, PSSH/MPD parsing, ...
Morningstar

Synack Introduces New Agentic AI Pentesting Solution

REDWOOD CITY, Calif., Nov. 17, 2025 /PRNewswire/ -- Synack, a pioneer in offensive security, today announced Sara Pentest, a new agentic AI product built on the Synack Autonomous Red Agent (Sara) ...
Business Wire

Announcing XBOW Pentest On-Demand for Security at Machine Speed

SEATTLE--(BUSINESS WIRE)--XBOW, the leading autonomous offensive security company, today announced the launch of XBOW Pentest On-Demand, a fully automated penetration testing service that operates at ...
SecurityWeek

Tenzai Raises $75 Million in Seed Funding to Build AI-Powered Pentesting Platform

Tel Aviv, Israel based Tenzai has developed an AI-driven platform for penetration testing, which it says can continuously identify and address vulnerabilities. Cybersecurity startup Tenzai has emerged ...
Crude Oil Prices

API Reports Sizeable Crude Oil Build

The American Petroleum Institute (API) estimated that crude oil inventories in the United States saw a sizeable build of 6.5 million barrels in the week ending October 31. Crude oil inventories in the ...
Cloud Security Alliance

AI-Integrated Cloud Pentesting: How LLMs Are Changing the Game

Cloud environments have become central to modern business operations, but their scale, complexity, and dynamic nature create significant security challenges. Traditional penetration testing methods, ...
GitHub

Pentesting-28/Unofficial-Grok-API

⚠️👇🏻 What's missing??? - Cookies generators - x-statsig-id generator - Endpoint: https://grok.com/rest/app-chat/conversations/{conversationId}/responses ...
SiliconANGLE

Cobalt debuts hybrid AI and human-led approach to modernize penetration testing workflows

Penetration-testing-as-a-service company Cobalt Labs Inc. today announced new human-led, artificial intelligence-powered enhancements to its Offensive Security Platform that are designed to enrich ...
TechCrunch

OpenAI ramps up developer push with more powerful models in its API

OpenAI unveiled new API updates at its Dev Day on Monday, introducing GPT-5 Pro, its latest language model, its new video generation model Sora 2, and a smaller, cheaper voice model. The addition of ...
dbta

Astra API Security Platform Delivers Real-Time Visibility and Automated Pentesting

Astra Security, the platform for continuous pentesting, is releasing its new API Security Platform, uncovering undocumented, zombie, and shadow APIs that put infrastructures and sensitive PII at risk.