The cloud isn't secure by default: what containers changed about risk

The cloud isn't secure by default: what containers changed about risk

Containers made it easier to ship fast — and easier to ship risk. Intruder's VP of Product breaks down where container risk comes from across the full security lifecycle, and what
Charlie Yianni
|
min read
March 24, 2026
|
min read
Overconfident and under resourced: navigating the midmarket security gap

Overconfident and under resourced: navigating the midmarket security gap

Olya Osiagina
|
min read
March 23, 2026
Registry vs. runtime: where to scan your container images

Registry vs. runtime: where to scan your container images

Container image scanning should happen at the registry level, not at runtime inside clusters. Centralized registry scanning gives teams full visibility, reduces operational overhea
Manuel Morejon
|
min read
March 19, 2026
Why attack surface reduction is your first line of defense

Why attack surface reduction is your first line of defense

Proactive attack surface reduction is about reducing unnecessary internet exposure before it becomes a problem.
Daniel Andrew
|
min read
March 3, 2026
The Vulnerabulletin Issue #5

The Vulnerabulletin Issue #5

Issue 5 of our monthly newsletter, packed with research, industry news and Intruder updates.
Dann Moore
|
min read
March 18, 2026
The Vulnerabulletin Issue #4

The Vulnerabulletin Issue #4

Issue 4 of our monthly newsletter, packed with research, industry news and Intruder updates.
Dann Moore
|
min read
February 18, 2026
Beyond Compliance: What Actually Builds Customer Trust

Beyond Compliance: What Actually Builds Customer Trust

Compliance frameworks help you pass an audit; continuous compliance helps you keep customer confidence.
Ashley Hyman
|
min read
February 18, 2026
See TODAY’S CVE TRENDS

Our latest research

more research
From enterprise chatbots to gooner caves: exposed AI infrastructure is rampant

From enterprise chatbots to gooner caves: exposed AI infrastructure is rampant

We scanned 1 million AI services and found widespread misconfigurations, exposed credentials, and unauthenticated APIs. AI infrastructure security is falling dangerously behind.
Benjamin Marr
March 27, 2026
Secrets in your Bundle(.js) - The Gift Attackers Always Wanted

Secrets in your Bundle(.js) - The Gift Attackers Always Wanted

Our scan of 5M apps uncovered 42k+ tokens in JavaScript bundles, from code repo tokens to project management API keys. Learn why traditional scanners miss them, and how Intruder’s new secrets detection method catches what others can’t.
Benjamin Marr
December 11, 2025
AI Vibe Coding: When Convenience Turns Into a Security Liability

AI Vibe Coding: When Convenience Turns Into a Security Liability

When we used AI to help code a honeypot, it introduced a vulnerability of its own. What transpired was a fascinating, if uncomfortable, lesson in AI complacency - how easily trust in automation can make us miss what’s right in front of us. We share what we learned and what it means for anyone using AI to code.
Sam Pizzey
December 2, 2025

Cyber explainers

more guides
9 best DevSecOps tools for 2026

9 best DevSecOps tools for 2026

DevSecOps tools help identify security vulnerabilities early in your development process. Explore our list of the best tools for 2025.
Christian Gonzalez
November 29, 2023
AWS Cloud Security Explained: What’s Left Exposed?

AWS Cloud Security Explained: What’s Left Exposed?

Think AWS has your security covered? Not entirely. This blog breaks down what AWS doesn’t secure, real-world risks you’re responsible for, and key actions you can take.
Daniel Andrew
March 20, 2025
AWS Security Services: What They Do and Don’t Do

AWS Security Services: What They Do and Don’t Do

AWS security services help protect your cloud, but they don’t secure everything. See what’s missing and how Intruder goes further to simplify cloud security.
Daniel Andrew
March 6, 2025
The Security Middle Child
How midmarket security teams are managing growth, complexity, and risk
get the report
Clear all filters
Top 3 Vulnerability Management Metrics To Measure In 2026

Top 3 Vulnerability Management Metrics To Measure In 2026

Discover the metrics you need to measure to track the state of your vulnerability management program. Get ahead of the curve with insights from Intruder's VP Product.
Charlie Fleetham
|
min read
October 13, 2023
|
min read
Vulnerability management
How Serious Is The Curl [CVE-2023-38545] Vulnerability?

How Serious Is The Curl [CVE-2023-38545] Vulnerability?

Intruder's security expert explains what the curl vulnerability is, whether you should be concerned about it, and how to identify and fix it.
Benjamin Marr
|
min read
October 11, 2023
|
min read
Vulnerabilities and Threats
What is vulnerability management?

What is vulnerability management?

Vulnerability management is essential to protecting your business against threats. Find out all you need to know and how to get started.
James Harrison
|
min read
October 9, 2023
|
min read
Vulnerability management
Is Looney Tunables [CVE-2023-4911] as bad as everyone says?

Is Looney Tunables [CVE-2023-4911] as bad as everyone says?

Grab security updates for your Linux distributions because there's a security hole that can be easily exploited by rogue users, intruders, & malicious software to gain root access.
Sam Pizzey
|
min read
October 6, 2023
|
min read
Vulnerabilities and Threats
What's new? Product updates from Intruder September 2023

What's new? Product updates from Intruder September 2023

Intruder’s list of integrations continues, adding internal targets is now much more intuitive, and remediation scans are live!
Andy Hornegold
|
min read
September 19, 2023
|
min read
Product
Don't get hooked: How to protect yourself against phishing

Don't get hooked: How to protect yourself against phishing

Phishing isn't going away any time soon. Learn about the latest attack techniques and scam examples so you can better protect your business.
Joe Haigh
|
min read
September 12, 2023
|
min read
Vulnerability management
Vulnerabilities and Threats
Gotta Catch 'Em All: Bug Hunting Explained

Gotta Catch 'Em All: Bug Hunting Explained

Learn all about Intruder's bug hunting service - what does it look for, who's it for, and how does it differ from a traditional pen test?
Courtney De Winter
|
min read
September 12, 2023
|
min read
Penetration testing
Rapid Response: Bridge the gap and find vulnerabilities faster

Rapid Response: Bridge the gap and find vulnerabilities faster

Learn how we can protect your assets even faster when new vulnerabilities emerge.
Charlie Yianni
|
min read
August 24, 2023
|
min read
Product
What is penetration testing? The ultimate guide

What is penetration testing? The ultimate guide

We'll walk you through everything you need to know about penetration testing to power up your cyber security.
James Harrison
|
min read
August 22, 2023
|
min read
Penetration testing
How to build a resilient remote-working business

How to build a resilient remote-working business

How to reduce the digital risks of remote working, including the red team experience of Product Lead, Andy Hornegold.
James Harrison
|
min read
August 17, 2023
|
min read
Insights
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Sign up for your free 14-day trial

Start today