Penetration Testing 2026: How to Enter the Profession
In penetration testing, people often try to enter through a list of tools: learn Burp, run Nmap, complete a couple of labs, and wait for the first real task. In 2026,…
In penetration testing, people often try to enter through a list of tools: learn Burp, run Nmap, complete a couple of labs, and wait for the first real task. In 2026,…
Last week's major news was the hack of the LiteLLM library, used as an intermediary for communication with a large number of language models. Through another malicious…
IBM, ReliaQuest, and Resilience studies show AI has made cybercrime far more effective, lowering entry barriers for attackers and increasing scaling opportunities, while…
In corporate infrastructure, entry points are often more numerous than desired. Email, VPN, internal portals, development systems, cloud services—each resource has its…
Nvidia has introduced the Space-1 Vera Rubin platform for transferring computing power beyond Earth. The new equipment provides inference performance 25 times higher…
Hello, Habr! My name is Askar Musaev, I am a business continuity expert at Infostroy Jet. In this article, I will discuss how to systematically assess a company's readiness…
What is "IB strategy" that Business will understand
Recently, Russia and its organizations remain a top target for cyberattacks. Instead of targeting individual companies, attackers choose entire industries as victims.…
Hello tekkix!
Currently, the main model used in most network interactions is TCP/IP. It is simpler, more compact, and widely used. But here’s the catch: in any serious certification,…
Hello! We share with you the material prepared by Roman Strelnikov — head of the information security department at Bitrix24. Roman is the person who controls everything…
Model Context Protocol is rapidly becoming the de facto standard for interaction between AI agents and external tools. The statistics are impressive: as of May 2025,…
Incident Description: The attacker uses stolen credentials to access the company’s server, website, or cloud.
Holidays, public holidays, any "extra" days off - this is an opportunity for attackers to try to launch an attack. The attackers' calculation is simple: the fewer "defending"…
Hello, today I will share with you another report. The vulnerability we will discuss is IDOR. Using it, I was able to expose personally identifiable information (PII…
Hello! Today we decided to remind tekkix readers that Positive Technologies not only research vulnerabilities, write research papers, and develop software for protection…
Continuing the series of articles. - Detection is easy, dedicated to Detection engineering, which I write about in the Telegram channel of the same name. Today we will…