blog

Our Latest Blogs

Explore our latest blog posts and stay secure in a digital world.

Understanding OWASP A08:2021 and How to Reduce Software Integrity Failures
July 8, 2026
Blacklock

Today, software is built and delivered faster than ever, but that speed has come with a cost. The integrity of the software supply chain is now one of the most actively targeted areas in cyber security.

Adopting Gartner’s Continuous Offensive Security Testing (COST) Framework with Blacklock
July 8, 2026
Blacklock

Earlier this year, Gartner introduced Continuous Offensive Security Testing, or COST, as a framework for rethinking how organisations approach offensive security validation.

Why Continuous Application Security Testing Can No Longer Be an Afterthought
May 15, 2026
Blacklock

Think about what it actually takes to exploit a publicly accessible web application today. According to IBM's 2026 X-Force Threat Intelligence Index, attacks that begin with exploiting public-facing

How AI-Driven Security Testing Accelerates OWASP SAMM Maturity for SaaS Companies
April 9, 2026
Blacklock

Most SaaS companies know they need a more mature secure development lifecycle. Fewer know how to get there without hiring a dedicated AppSec team or grinding through months of process change.

AI-Driven Vulnerability Validation: Eliminating False Positives in PTaaS at Scale
February 6, 2026
Blacklock

Penetration Testing as a Service (PTaaS) and continuous vulnerability scanning have become standard components of modern security programmes.

CREST-Accredited PTaaS: Enabling Continuous Security Assurance for SaaS and Fintech
January 6, 2026
Blacklock

DevOps teams in SaaS and fintech organisations move fast, releasing code continuously, updating infrastructure frequently, and relying on automated delivery pipelines. To keep pace, many are turning

CVE-2025-55182: React2Shell Explained
December 23, 2025
Blacklock

CVE-2025-55182 is a newly disclosed critical vulnerability (CVSS 10.0) affecting React Server Components (RSC), enabling attackers to execute arbitrary code on

Automated Security Validation With Agentic AI
November 20, 2025
Blacklock

Automated vulnerability revalidation with AI agents is changing how organisations maintain security assurance.

From OWASP to NZISM: Navigating Security Standards in New Zealand
October 2, 2025
Blacklock

Cybersecurity has become a baseline expectation for doing business, and New Zealand businesses are part of that global reality. The Government Communications Security Bureau (GCSB)

Subscribe to our newsletter

Join our newsletter today and enhance your knowledge with valuable insights. It's quick, easy, and free!

Be a Team Player
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.