🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

We found unauthenticated remote code execution on an industrial PLC without ever touching the hardware.   By unpacking publicly available firmware for the KUNBUS Revolution Pi, our Adam Bromiley discovered four vulnerabilities. Two of them allowed RCE with no authentication

If you followed the EV charger security story, you’ll know where this is going... The UK is bringing in new cybersecurity rules for smart heat pumps. Manufacturers must comply by late 2026 or early 2027. 📅 The rules are part of the government’s Smart Secure Electricity

By me Forbes: Accessing restricted SharePoint passwords using Copilot AI. Excellent work by Pen Test Partners, Jack Barradell and Ken Munro #infosec forbes.com/sites/daveywin…

We're pleased to announce that RiverSafe, the Retail and Hospitality ISAC (RH-ISAC), and the Automotive ISAC (Auto-ISAC) are partnering with us at this year's #PTPCyberFest, which will take place on June 3rd–4th at The Fox, ExCeL London! Learn, network and get involved with

🖥️ VNC might be convenient for legacy systems, but it's just as convenient for attackers... Unencrypted traffic makes it easy to intercept credentials. Some setups don’t require a password at all. And even when passwords are used, they’re often weakly stored and easily cracked.

Our Red Team found multiple ways to get around SharePoint’s “Restricted View” and exfiltrate data. Here's how... Jack Barradell walks through Red Team methods using OCR and screenshots, Copilot, browser tricks, and HTML scraping to keep and collect data. No matter the file type

PTP Cyber Fest is one week away... See what's going on at our speciality villages below! 🎉👇 Our Cloud and AI village Come and test out your prompt injection skills against a mini AI CTF, and ask us about how threat actor simulation can help uncover issues in your cloud

⚡️1 WEEK!⚡️ 4 Jun = Infosecurity Europe AfterParty in London: 🎧 DJs, raffle, fun – and 100 % of sponsor ££ goes to NSPCC thanks to the legends Pen Test Partners . Huge shout-out to our sponsors! Last year £18k,let’s smash it. Tag your crew, RSVP & party with purpose! 🙌

Installing unsigned or fake-signed iOS apps for testing without a Mac, Xcode, or access to proper signing tools can be a challenge. Since iOS normally relies on the App Store to handle signing, getting apps onto a device manually isn’t always straightforward. In our latest blog

🚫 No fire detection means no going to sea. If you're running the Consilium Safety CS5000 fire panel on board, hardcoded credentials could let an attacker shut it down remotely.   As a result, if the system is taken offline, your vessel could be detained, lose its class

PTP Cyber Fest opens its doors at noon tomorrow! 🕛🎉 For those who have preregistered, come and collect your pass with us at our front desk at the Fox Pub! If you haven't registered... 📌You can register here: events.rantcommunity.com/PTPCyberFest20… or Turn up and scan the QR code at our

It was a pleasure collaborating with Matthew Wenham and James Greenwood from the BBC News (UK) on BBC Morning Live. We looked into security flaws in the pet microchipping system and how they might be linked to the rise in phishing scams targeting pet owners. 📌 Watch here:

Relying on dual-homed devices to separate your networks? You might be opening the door to attackers without realising it. 🖥️   During a recent OT and ICS assessment, what looked like strong segmentation on paper actually created hidden pathways across their networks.   We found

“Practice getting punched in the face.” That was the message from our own Ken Munro in his talk on incident response preparation at @CyberEast Cambridge yesterday. In Digital Forensics and Incident Response (DFIR), that punch might be ransomware locking your systems,

Missed PTP Cyber Fest 2025? Here’s what happened… It was two days of hands-on activities, conversations, and an incredible effort that raised over £27,000 for NSPCC with Cyber House Party! 🎉 📌 We’ve wrapped up the highlights here: pentestpartners.com/security-blog/… A huge thank you to