XBOW

Expert-level pentesting. On demand. Starting today. → Launch in minutes → Results in 5 days → Validated, reproducible, compliance-ready 🗓️ Live demo walkthrough tomorrow: xbow.com/pentest-webinar

Black Hat Booth 3448 ... Meet the best AI hacker.

“Exploit proof” needs to rise to the top of your remediation program as a key modifier for findings, rather than trying to boil the ocean, says Moderna Deputy CISO Farzan Karimi in a recent webinar with XBOW co-founder @nicowaisman. Hear more from Farzan below. Watch full webinar recording here: bit.ly/4eIForC

The Five Eyes cyber security agencies just set a timeline for what many security leaders already know: AI-driven cyber risk is arriving in the next few months. From their June 22 statement: “As the leaders of the Five Eyes cyber security agencies, we are united in our call to action: the evolving landscape of artificial intelligence (AI) is rapidly transforming cyber risk, and we must act swiftly to remain ahead.” Continuous, autonomous security testing is becoming the standard, as knowing which vulnerabilities are actually exploitable, what matters most, and where to focus before attackers get there first becomes increasingly critical. “Adversaries are already using AI to move faster and more effectively. Defenders must do the same,” the statement concludes. That's the problem XBOW was built to solve. Read full statement: bit.ly/4vsuzkh

How does XBOW identify business logic flaws? Hear from XBOW security researcher @pwntester in the clip below. Get more of his thoughts on business logic flaws and how to address them in his new blog: bit.ly/4fKEpsP

In a new episode of the Cyberwire podcast, “Vulnerability response. Built for humans, outpaced by machines,” XBOW Head of Security Labs @fede_k shares his perspective on vulnerability management when frontier models are finding the flaws. Listen to the episode: bit.ly/4epV5ov

What would it take to build an AI-powered offensive security tool? We highlight the cost below. Get full details in our new whitepaper: bit.ly/4eqcEDH

@AITinkerers is hosting an offensive security demo night on June 25 with XBOW. Live exploits, autonomous pentesting, LLM-assisted vulnerability discovery, code walkthroughs, and technical Q&A. No decks. No pitches. Working systems only. RSVP: bit.ly/3SdPtVS

Why do you need a harness around a model for offensive security? XBOW Head of Security Labs @fede_k explains on the Application Security Weekly podcast. See clip below. Watch full episode: bit.ly/4uKbclK

Why are design flaws like IDOR so hard to find with automation? XBOW security researcher @pwntester explains in the clip below. Get more of his thoughts on business logic flaws and how to address them in his new blog: bit.ly/4fKEpsP

We're looking forward to meeting the AppSec community at @owasp Global AppSec EU 2026 to discuss how autonomous offensive security continuously validates exploitable risk with evidence, helping teams prioritize based on exploitability, not assumptions. Join us at OWASP EU to see how machine-speed offensive security is changing AppSec workflows: bit.ly/4uey3FF

If an organization can point a powerful language model at an application and unearth findings, is it effectively running a penetration test? Our new whitepaper breaks down where LLMs are powerful tools for pentesting, and where they need more support. It also details how XBOW leverages the power of the new frontier models while bolstering their weaknesses: bit.ly/4eqcEDH

Join us for a live session with XBOW solution architect @loiliangyang at 1:30PM Singapore time this Wednesday! Loi will explain how XBOW autonomously emulates real attacker behavior to uncover and validate exploitable weaknesses in enterprise organizations. Learn how you can operationalize continuous, autonomous penetration testing to strengthen security posture while meeting regulatory and delivery demands. Registration link: bit.ly/4ocCrDO Time: 1:30PM-2:30PM(Singapore time) Date: 17th June 2026

XBOW is changing the world! We’re thrilled to announce that XBOW has been named a winner of @FastCompany's 2026 World Changing Ideas Awards in the Business Products & Services category. “This year’s honorees are turning bold ideas into tangible solutions and addressing urgent global challenges with creativity and rigor,” said Fast Company Editor-in-Chief Brendan Vaughan. XBOW was built around a simple idea: offensive security should be continuous, autonomous, and grounded in proof. Not more alerts. Not more noise. Real vulnerabilities, exploit-validated and prioritized by autonomous agents. This recognition reflects the work of our partners, customers, and research team, who believe the future of security is autonomous offense. Explore the award and the companies recognized alongside us: bit.ly/4epnGca #FCWorldChangingIdeas

Security teams are being asked to make decisions faster, with more findings and less signal. We're looking forward to joining security leaders from across the financial sector at @FSISAC 2026 EMEA Summit this week to discuss how autonomous offensive security continuously validates exploitable risk with evidence, helping teams focus on what is actually actionable. See you there: bit.ly/4xihbR9

“The basic issue is that LLMs are unusually good at following instructions and unusually bad at distinguishing trusted instructions from hostile ones,” says XBOW Head of AI Albert Ziegler in a new International Business Times article. As AI systems gain access to more business-critical data and workflows, the impact of exploitation grows. Read more in @IBTimes: bit.ly/3S3pZdO

Samsung SDS announced that it is partnering with XBOW as part of its overall initiative to further strengthen their cybersecurity capabilities. The announcement notes that Samsung SDS is now leveraging XBOW to uncover hidden vulnerabilities through attack simulations, accelerating identification and remediation with unmatched speed and precision. Get details: bit.ly/4oo3zjs

The financial sector is feeling the impact of AI-driven threats. We're heading to the @FSISAC 2026 EMEA Summit to meet with security leaders tackling a common challenge: how to defend at machine speed when attackers are no longer constrained by human scale. Autonomous offensive security is shifting from an emerging capability to a foundational one, enabling institutions to continuously discover, validate, and prioritize exploitable risks with speed, evidence, and less false positives. Connect with our team at FS-ISAC 2026 EMEA Summit June 15-18 to learn how: bit.ly/4xihbR9

"Right now, what we're seeing is like returning to the early 2000s," says @fede_k, head of security labs at XBOW. "Yes, we have security findings, but now the problem is triaging. Now the problem is routing. Now the problem is: is this real or not?" Hear more in the clip below ⬇️ Tune into the full episode here: bit.ly/4nUd2hW

“AI is changing the story of design flaw identification, says XBOW security researcher @pwntester in the clip below. Get more of his thoughts on business logic flaws and how to address them in his new blog: bit.ly/4fKEpsP

Security outcomes improve when great technology is paired with trusted expertise. It was great spending time with the @GuidePointSec team and customers at the GuidePoint Security Golf Classic at Terry Hills yesterday. As organizations face a growing volume of vulnerabilities and increasingly complex attack surfaces, partnerships matter. Together, we're helping organizations move beyond finding vulnerabilities to continuously validating real, exploitable risk.