🚨Vulnerability Watch 🚨 Our testing team is seeing a familiar but dangerous pattern: legacy infrastructure is still creating modern risk. Attackers know that while core applications may be patched and monitored, older or forgotten systems often fly under the radar. These

October is #CybersecurityAwarenessMonth. Each week we’ll share a practical tip from our experts that helps protect you and your company. We’ll break it down so you know what matters most! First up: 🔒How multi-factor authentication (MFA) can save your accounts from compromise.

Sprocket is excited to once again be exhibiting #InfoSecWorld2025, taking place October 27–29 in Orlando, FL! If you haven't gotten your pass yet, save 20% with our code ISW25-JOINME when you register: hubs.la/Q03L8Gf-0 Already planning to attend? Be sure to stop by our

Vulnerability hunting isn't always about fancy exploits. Sometimes, the biggest risks hide in plain sight-- like environment variables. In his latest blog, Principal Pentester Ron Edgerson shares how simple trust in HOME and LADSPA_PATH opened the door for attackers to run code

Happy Friday! We're here to share our next tip for Cybersecurity Awareness Month: 📡 Segment Your Network “Apply identity-based segmentation (beyond VLANS / firewalls). Tools like ZTNA, SDP, or host-based firewalls make lateral movement detection and prevention feasible.” -

Join us in welcoming Erin Martineau to the Sprocket Security team, coming on as an Account Executive! Erin has several years’ experience selling offensive security solutions from her time at Cobalt, and we are confident that her extensive industry knowledge and impressive track

Organizations are often surprised by what’s exposed once real attacker-focused testing begins. Hidden risks live in plain sight, and without continuous visibility, they can linger unnoticed until it’s too late. With Sprocket’s Community Edition, you can uncover and monitor your

We’re excited to announce that Thomas Walter has joined the Sprocket Security team as an Account Executive! Thomas will be building out the Southwest region at Sprocket Security. Thomas has lots of experience in the offensive security space and we couldn’t be happier to have

🧠 “Fresh eyes find new things.” That phrase has justified rotating pentesters for years — resetting engagements and restarting from zero. In reality, it benefits vendors more than customers. Each new team spends time relearning what the last one already knew. Context is lost.

🚨 F5 BIG-IP under active attack. #SprocketSecurity responded within 24 hrs: scanning, risk-scoring, & validating exploit paths for all clients! Treat F5 as high-risk until proven safe. 🔗 hubs.ly/Q03P6cmv0

‍💻 Be Suspicious of Unexpected Emails & Links Why: Phishing is still the #1 attack vector. Hovering (desktop) or long-pressing (mobile) reveals the true destination, helping you spot mismatches and avoid malware. “If something feels off, pick up the phone and verify.” - Ron

Join us this Thursday, October 23 at 10:30am ET for a special webinar with SANS, featuring Sprocket CEO and Founder Casey Cammilleri! We'll be diving into how Continuous Pentesting integrates attack surface management with offensive and defensive collaboration to deliver

Most organizations maintain an asset inventory, but what attackers see often tells a very different story. Shadow IT, forgotten services, and subtle misconfigurations create weak points that rarely show up on compliance checklists. With Sprocket’s ASM Community Edition, you can

Today's cyber tip: 🚫 Limit Admin & Privileged Access “Use standard accounts for daily work and only elevate to admin when needed.” - Juan Pablo Gomez Postigo, Senior Penetration Tester Why: Attackers love admin accounts. One compromise can give them the keys to the kingdom.

Your next #pentest could be more than a checkbox — it could be a strategic win. The key? Preparation. 🎯 Set clear goals 📋Define your scope 📁 Prep your systems and people ⚠️ Follow through on findings Ready to level up your testing game? 👉 hubs.la/Q03QNxQt0

Our final #CyberTip of #CybersecurityAwarenessMonth 🛡️Assume You’re a Target “Make security part of your routine: double check links, question unexpected requests, and report anything suspicious. Your vigilance protects more than just your account. It protects the whole

Coming up next week! No Slides. No Fluff. Just Security Buying Truth. Join the the conversation on Wednesday, Nov 5, 2025 at 12:00pm CT. hubs.la/Q03QW20S0 #offensivesecurity #securityroi #ciso

#CybersecurityAwarenessMonth ends here but attackers don’t! Keep the mindset, not just the month. Good security habits to last all year: 🔐 Turn on Multi-Factor Authentication  📡Segment Your Network ‍💻 Be Suspicious of Unexpected Emails & Links 🚫 Limit Admin & Privileged

What an incredible few days at CyberRisk Alliance's InfoSec World 2025! The Sprocket booth was buzzing with activity, and we had so many great conversations throughout the event. A huge thank-you to everyone who stopped by and to the organizers for putting on such an amazing

When Phillip Wylie sat down with Casey Cammilleri on the latest #AheadOfTheBreach episode, one thing was clear: Once-a-year pentesting isn’t enough. The gaps between tests are where attackers live. Continuous validation > annual checkboxes. #pentesting #offensivesecurity