Skip to content

Red Teaming

AI in Offensive Security: Redefining Pen Testing and Red Teaming

AI in Offensive Security: Redefining Pen Testing and Red Teaming In a landmark keynote at Hacker Halted 2025 in Atlanta, US, Bikash Barai, Founder & CEO of FireCompass, shared his insights on how AI and automation are fundamentally transforming offensive security, penetration testing, and red teaming. The session highlighted the rapidly evolving cyber landscape, demonstrating… Read More »AI in Offensive Security: Redefining Pen Testing and Red Teaming

Supreme Court Electronic Filing System Hack

Date of Incident: August to October 2023 Overview: The Supreme Court of the United States experienced a significant security breach in its electronic filing system between August and October 2023, disclosed in January 2026. Unauthorized access allowed the attacker to leak confidential details and victim names on Instagram. The breach leveraged techniques mapped to MITRE… Read More »Supreme Court Electronic Filing System Hack

Weekly Report: New Hacking Techniques and Critical CVEs 26 Dec – 31 Dec 2025

The final week of 2025 (December 26-31) featured NVD publication of multiple critical CVEs including root RCE in Xspeeder SXZOS (CVE-2025-54322) and high-severity deserialization flaws, alongside reports of MongoBleed memory leaks in MongoDB and sustained scans on legacy FortiOS/Adobe ColdFusion vulnerabilities. Dark web forums pushed unrestricted AI tools like DIG AI for malware generation and… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 26 Dec – 31 Dec 2025

Weekly Report: New Hacking Techniques and Critical CVEs 2 Dec – 10 Dec 2025

Between 2-10 December 2025, three developments stand out for enterprise defenders: Shai-Hulud 2.0 npm worm: A rapidly evolving supply chain threat abusing npm and GitHub Actions to build a self-propagating CI/CD worm, with active reporting and defensive guidance released during this week. The underlying campaign began in September but continued and evolved into December, especially… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 2 Dec – 10 Dec 2025

Inotiv Ransomware Attack

Date of Incident: August 2025 Overview: In August 2025, Inotiv, a healthcare services company, suffered a ransomware attack that disrupted business operations and compromised the personal information of 9,542 individuals. The cyberattack involved exploiting vulnerable remote access services and phishing techniques, encrypting 162,000 files totaling 176 GB. The attack aligned with MITRE ATT&CK techniques, featuring… Read More »Inotiv Ransomware Attack

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.