Cobalt.io

06/06/2026

The "annual pentest" is a dangerous snapshot in a real-time world. 🗓️

If your attack surface changes daily, a once-a-year report leaves a massive gap between discovery and defense. That’s why the shift to Continuous Threat Exposure Management (CTEM) is so critical.

By moving from a "check-the-box" event to a continuous validation cycle with PTaaS, you stop firefighting and start managing risk at the speed of your business.

Stop waiting for the calendar to tell you if you're secure. Read on → https://hubs.la/Q04knYvt0

Transition from traditional VAPT to Continuous Threat Exposure Management (CTEM) to enhance your cybersecurity strategy against evolving threats.

06/06/2026

🛡️ Anthropic just expanded Project Glasswing, granting 150 more critical organizations access to its powerful Claude Mythos Preview model. While early partners have already uncovered thousands of high-severity flaws, the news highlights a bigger reality in modern security.

As Cobalt CTO Gunter Ollmann points out to SC Media, traditional tools only go so far:

"Organizations have invested heavily in SAST, DAST, and other automated DevSecOps processes, yet thousands of previously undiscovered vulnerabilities are still being uncovered when advanced AI is paired with deep source code access and skilled security practitioners directing the investigation."

Advanced AI is supercharging it to find the gaps our current automated pipelines miss. How is your team preparing for the wave of AI-driven vulnerability discovery?

Read the full breakdown via SC Media → https://hubs.la/Q04kp5RY0

Project Glasswing partners discovered more than 10,000 vulnerabilities in its first month.

06/06/2026

And that’s a wrap on Infosecurity Europe 2026! 🎬

What an incredible few days at ExCeL London. A huge thank you to everyone who stopped by to chat about the future of Pentesting as a Service (PTaaS) and offensive security. A special shoutout to everyone who packed the room for Cobalt CTO Gunter Ollmann’s session on autonomous offensive security.

If we didn't get a chance to connect, or if you want to keep the conversation going about scaling your security program, you can reach out to the team and schedule a demo here → https://hubs.la/Q04knLwr0

See you next year, London! 🇬🇧✈️

Get started with a demo pe*******on test and other offensive security services on the Cobalt Offensive Security Testing Platform. Schedule a demo today!

06/04/2026

You don't need a zero-day when the classics still work.

Cross-Site Scripting. Missing Access Control. Server-Side Injection. Business Logic flaws. CSRF.

These are some of the most common findings uncovered in pentests today—and many remain unresolved long after they're discovered. In fact, 61% of XSS findings and 60% of Server-Side Injection findings remain open.

In this video, Cobalt Core member Harsh Bothra shares a pentester's perspective on why attackers keep coming back to these vulnerabilities, how they turn seemingly simple flaws into major compromises, and what security teams should be paying attention to.

Get your copy of the report → https://hubs.la/Q04k9V_s0

06/04/2026

This past Monday, Cobalt co-hosted a private Cybersecurity Mastermind Dinner alongside the Gartner Risk Summit at the beautiful 1799 Prime Steak and Seafood.

It was an incredible night of networking, shared experiences, and candid discussions about the future of risk and security. A huge thank you to everyone who joined us and made the evening so impactful!

06/03/2026

🔦 New Pentester Spotlight: Meet Lucas Bueno!

What do an anime villain, childhood internet pranks, and offensive security have in common?

For Lucas ("Sterben"), they're all part of the journey that led him to pentesting. In our latest Pentester Spotlight, Lucas shares how he got started in cybersecurity, the finding he's most proud of, and why understanding business logic is often the key to uncovering impactful vulnerabilities.

Read the spotlight → https://hubs.la/Q04jZK710

Explore the journey of pentester Lucas Bueno, his cybersecurity insights, and the evolving landscape of pentesting in 2026. Learn about effective strategies and tools.

06/03/2026

Day 2 at is in the books! 🚀

Planning your Day 3 schedule? Don't miss Cobalt CTO Gunter Ollmann tomorrow morning as he tackles the new reality of machine-speed threats.

🤖 AI vs AI: When Offensive Security Becomes Autonomous
⏰ Thursday, June 4 @ 10:30 AM BST
📍 AI & Cloud Security Session Room

Catch the talk, then swing by Booth A70 to grab a limited-edition shirt and talk strategy with the team! 👇 https://hubs.la/Q04jY_-S0

Discover Cobalt's innovative PTaaS at Infosecurity Europe 2026. Connect with experts, explore our platform, and learn how to enhance your offensive security strategy.

06/02/2026

For years, security programs operated under a simple assumption: defenders would have time...

But what happens when vulnerability discovery, validation, and exploit development begin operating at machine speed?

CISO Andrew Obadiaru shares his perspective on Mythos, why traditional vulnerability management assumptions are weakening, and why security maturity will increasingly be measured by exposure reduction speed, not simply patch compliance percentages.

Read more → https://hubs.la/Q04jSd2s0

Explore how AI, particularly systems like Mythos, is reshaping vulnerability timelines, urging security teams to adapt for faster remediation and stronger governance.

06/02/2026

👏👏 👏 Cobalt has been named a winner in the 2026 Fortress Cybersecurity Awards, in the category of Continuous Exposure Management (CEM)!

We’re redefining continuous threat exposure management with an offensive security platform that combines elite human expertise with AI-driven capabilities.

By delivering continuous, attacker-informed testing at scale, our platform enables organizations to identify, prioritize, and remediate real-world vulnerabilities faster, aligning security with the speed, complexity, and risk of modern cloud and application environments.

Congratulations to the entire team driving this work forward!

Read the full announcement and the complete list of 2026 winners → https://hubs.la/Q04jMl2J0

06/02/2026

⭐⭐⭐⭐⭐ Reading customer reviews never gets old!

Whether it's hearing that pentesting felt more collaborative, that findings were easier to remediate, or that teams were able to move faster because of the partnership, we're incredibly grateful for the feedback.

To everyone who has taken the time to share their experience with Cobalt on G2: thank you. We appreciate the trust you place in us and the opportunity to be part of your security journey.

If you've worked with Cobalt and would like to share your experience, we'd love to hear from you → https://hubs.la/Q04jMbfj0

Filter 177 reviews by the users' company size, role or industry to find out how Cobalt works for a business like yours.