Recent News Articles
Your Peers Have Something To Say
Ridge Security compromising with customers first
RidgeBot: #1 most reviewed tool for pentesting
Ridge Security, an AI-powered provider of offensive security for Continuous Threat Exposure Management (CTEM), has announced two new features for RidgeBot 6.0. These additions include AWS Security Audit and Windows Authenticated Pentest enhancements, which will improve context-aware offensive security validation across IT, OT, and AI infrastructure. Ridge Security, leader in AI-powered offensive security for Continuous Threat Exposure Management (CTEM), today announced two new features for RidgeBot 6.0 that enhance context-aware offensive security validation across IT, OT, and AI infrastructure – AWS Security Audit and Windows Authenticated Pentest enhancements. Ridge Security, leader in AI-powered offensive security for Continuous Threat Exposure Management (CTEM), today announced that it has achieved ISO/IEC 27001 certification, the globally recognized standard for information security management systems (ISMS). The growing role of automation and artificial intelligence in these attacks is drawing increased scrutiny from security leaders and policymakers alike. Hom Bahmanyar, Global Enablement Officer at Ridge Security Technology Inc., said the University of Phoenix breach reflects a broader escalation that organizations are struggling to keep pace with. In a news brief circulated in connection with the incident, Hom Bahmanyar, Global Enablement Officer at Ridge Security Technology Inc., argued the breach fits a broader pattern of accelerating cyber risk and emphasized a shift toward proactive, validation-led security programs. “Only when we can continuously think and act like a hacker can we truly protect our environment,” said Nick Mo, CEO of Ridge Security. He noted that AI now makes it possible to simulate attacks at scale to validate security postures continuously, rather than relying on static alerts or occasional penetration testing. Attackers weaponized AI at speed and scale in 2025, automating reconnaissance and exploiting continuously. Defenders are restricted by compliance while adversaries run unconstrained. Small and mid sized organizations bear the brunt because they lack operational flexibility and face the same threats as large enterprises. Attackers weaponized AI at speed and scale in 2025, automating reconnaissance and exploiting continuously. Defenders are restricted by compliance while adversaries run unconstrained. Small and mid sized organizations bear the brunt because they lack operational flexibility and face the same threats as large enterprises. GenAI’s transformative power is evident in its robust data consumption and adaptive learning capabilities. It has the potential to revolutionize outcomes in almost every scenario. However, Lydia Zhang, President of Ridge Security, argues the breach is more closely related to CVE-2024-53704, a different SonicWall SSL VPN vulnerability. Hom Bahmanyar, Global Enablement Officer, Ridge Security Technology Inc. says: “The widespread misconception that detection of weak credentials across an organization’s assets requires specialized GPUs and scheduled downtime has unfortunately led to inaction on the part of many organizations.” In March 2025, Ridge Security released version 5.2 of RidgeBot, an AI‐driven automated pentesting platform, enhancing automated vulnerability discovery and validation capabilities for enterprises. Ridge Security has made its flagship AI-powered solution, RidgeBot®, available on the Microsoft Azure Marketplace, Microsoft’s online store providing applications and services for use on Azure. Lydia Zhang, president of Ridge Security, said this recent attack was more closely related to CVE-2024-53704 rather than CVE-2024-40766. Zhang said the “53704” SonicWall SSL VPN vulnerability leaks the swap cookie and session ID, which lets a remote attacker bypass authentication and take over an existing session. Lydia Zhang, President & Co-Founder, Ridge Security Technology Inc. had this to say: “The ironic thing is that organizations often don’t realize their IoT devices or routers have been compromised until a DDoS attack occurs.” Ridge Security has launched its AI-powered RidgeBot penetration testing platform on the Microsoft Azure Marketplace, providing organizations with a streamlined path to automate and continuous security validation, Security Brief Australia reports. Lydia Zhang, President & Co-Founder of Ridge Security Technology, adds that it’s clear that once attackers succeed in a large-scale breach, it becomes progressively easier for them to leverage the compromised data and tokens to achieve additional attacks. Lydia Zhang, co-founder and president of Ridge Security Technology, said that “the message for defenders is that patching the initially ‘broken’ door isn’t enough. You must thoroughly inspect every part of your environment to ensure the attackers cannot reuse access from a prior breach to open new doors.” Lydia Zhang, President & Co-Founder,Ridge Security Technology Inc. followed up with this: “It’s clear that once attackers succeed in a large-scale breach, it becomes progressively easier for them to leverage the compromised data and tokens to achieve additional attacks.“ Ridge Security, a leading innovator in automated penetration testing and continuous security validation, has made its flagship AI-powered solution, RidgeBot®, available on the Microsoft Azure Marketplace, Microsoft’s online store providing applications and services for use on Azure. Lydia Zhang, President at Ridge Security Technology, told Infosecurity Magazine, “Without thorough security testing or a widely accepted industry standard established before setting cyber insurance terms, it opens the door to hackers who can then target organizations with the highest coverage.” Lydia Zhang, President & Co-Founder, Ridge Security, believes that this move will do little to curb criminals intentionally targeting organizations known to have strong policies: “It’s ironic that cyber insurance has become a viable solution. Without thorough security testing or a widely accepted industry standard established before setting cyber insurance terms, it opens the door to hackers who can then target organizations with the highest insurance coverage.” Ridge Security, leader in AI-powered offensive security for Continuous Threat Exposure Management (CTEM), today announced that it was the second highest vendor to score a willingness to recommend with 95% in the 2025 Gartner’s Peer Insights “Voice of the Customer” for Adversarial Exposure Validation. “It’s ironic that cyber insurance has become a viable solution,” argued Ridge Security Technology president, Lydia Zhang. Lydia Zhang, President & Co-Founder, of Ridge Security Technology, added: “In July, the UK government said it plans to ban public bodies from paying ransoms to computer hackers. Private companies will also be required to inform authorities if they intend to comply with ransom demands.” Ridge Security, leader in AI-powered offensive security for Continuous Threat Exposure Management (CTEM), today announced RidgeGen, a comprehensive Agentic AI framework designed to take security validation from automation to autonomy. Powered by RidgeGen, Ridge Security’s flagship product, RidgeBot, delivers intelligent, context-aware offensive security validation across the IT, OT, and AI infrastructure. Ridge Security, a security validation leader in Continuous Threat Exposure Management, today announced RidgeSphere, a centralized management platform designed to simplify the orchestration of multiple RidgeBot. Ridge Security, leader in AI-powered Offensive Security for CTEM, today announced that CRN, a brand of The Channel Company, has recognized Ridge Security on its 2025 Tech Elite 250 list. Ridge Security, a leader in AI-powered security validation, is excited to announce the release of RidgeBot® 5.2, featuring RidgeGen, an advanced security service module powered by specially trained Generative AI (GenAI) language models. Paul Auvil brings over 35 years of finance, technology, and corporate leadership experience. He has worked for leading cybersecurity and technology companies, bringing a keen understanding and wealth of knowledge and expertise to Ridge Security. Traditional security measures, while essential, are no longer sufficient to protect against the complex and persistent attacks that can cripple a business. Ridge Security, a leading provider of AI-powered automated security validation proudly announces its inclusion in the newly published Gartner Hype Cycle for Security Operations 2024. Ridge Security has been recognized in the newly defined category of Adversarial Exposure Validation under Continuous Threat Exposure Management (CTEM) framework. Ridge Security Technology is proud to announce that it has been awarded the “Publisher’s Choice DevSecOps Vanguard 2024” and its co-founder and president, Lydia Zhang, has been honored as a “Market Leader Pioneering Woman in Cybersecurity 2024” by the Global InfoSec Awards. Ridge Security Technology is proud to announce that it has been recognized as the “Most Promising Cybersecurity Startup” and its CEO, Nick Mo, received the prestigious Next Gen Visionary Cyber CEO Awardfrom Cyber Defense Magazine. Chief Information Security Officer (CISO) Emily Reed is responsible for safeguarding the digital assets of a thriving healthcare organization renowned for its advanced digital technology solutions. A curious parallel can be drawn between cybercriminals and the intriguing phenomenon of Cicadas. Akin to the periodic insects that emerge from the ground after years of dormancy, cybercriminals often resurface with renewed vigor, unleashing their disruptive activities on unsuspecting organizations. Penetration testing reveals computer system weaknesses and seeks to exploit them. However, implementing such a test is costly and impractical due to the extensive human hours required. As a result, completing the test and generating a report typically takes two weeks. Ridge Security, cutting-edge AI-powered security validation solution provider, announced it has signed a partnership with BROAD Corporation, to equip enterprise customers in the Japan market with top-tier solutions to enhance security operations and protect critical assets and infrastructure. Ridge Security, a leader in automated penetration testing and AI-powered security validation for CTEM, today announced Gartner Peer Insights placed it in the upper-left Strong Performers quadrant of the “Voice of the Customer.” The Ridge Security rating of 4.7 out of 5 stars, with 94 % of customers indicating a “Willingness to Recommend.” Imagine two security analysts engaging in conversation about the intricacies of their work when one receives hundreds of vulnerability alerts; all scored high risk at seven or eight. Throwing his hands up in frustration, he asks his co-worker, “What are we supposed to do with all this? Where do we start?” After a glance, the second analyst replies, “Well, there’s zero context from the vulnerability scanner. So, looks like no lunch break for us today, buddy … or tomorrow.” The old idiom ‘Can you walk and chew gum at the same time’ was initially used as a negative slam regarding an individual’s level of competence. In light of today’s threat landscape, the question for organizations might be, “Can your security team handle the multiple tasks and numerous processes required to detect, respond, and mitigate escalating cyber threats at the same time?” Called upon to become super multitaskers, they must successfully address routine and unexpected challenges without compromising quality or efficiency. AI’s capacity to consume, assimilate and use massive datasets from numerous resources is the driving force behind significant advancements in most industries. AI-driven technologies provide deeper data insights to improve health care outcomes and optimize operational processes in manufacturing, for example. AI technologies to improve security outcomes are also being deployed to detect and prevent cyberattacks. While these AI use cases differ in their procedures and goals, the common denominator is the value of leveraging data intelligence. There is a growing concern that the increasing use of AI could create a tipping point where the technology grows and permeates our personal lives and businesses rapidly, building upon itself while cyber protections are still catching up. If your organization is concerned about increasing and expanding cyber threats, you are not alone. While many enterprises recognize the need to create a multi-layered security posture, this article explores the importance of Continuous Threat Exposure Management (CTEM) and how it can help proactively manage risks and bolster defences against growing cyber threats. If your organization is concerned about increasing and expanding cyber threats, you are not alone. While many enterprises recognize the need to create a multi-layered security posture, this article explores the importance of Continuous Threat Exposure Management (CTEM) and how it can help proactively manage risks and bolster defences against growing cyber threats. Ridge Security, a leading exposure management provider, is proud to announce that is has been included in two distinct categories of the Gartner Hype Cycle for Security Operations 2023. RidgeBot, the AI-Powered automated security validation solution, is included in the following two categories: Automated Penetration Testing and Red Teaming Technology, and Breach and Attack Simulation. Ridge Security secures Most Innovative Cloud Workload Protection and Best Web Penetration Test Solution in 11th Annual Global InfoSec Awards. RidgeShield integrated with RidgeBot® combines the power of automated security testing and cloud workload protection for maximum protection. An awareness of unprotected vulnerabilities and risks is the starting point for determining the best way to align resources with cybersecurity. By conducting regular real-world attack testing, security operations can illuminate weaknesses while gaining control over risks. Cybersecurity testing is deployed to eliminate risk, improve business continuity and meet compliance requirements. The integration between Stellar Cyber Open XDR and Ridge Security’s RidgeBot reduces enterprise risk with streamlined operations and data for instant remediation and response. Ridge Security, the cutting-edge automated security validation solution provider, announced it has partnered with Stellar Cyber, the innovator of Open Extended Detection and Response (XDR), to deliver an integrated solution that streamlines security operations and consolidates multi-sourced data and insights into one single platform to quickly and automatically investigate and remediate threats. Complete 360-degree protection of customer assets with exposure management allows MSSPs and MDRs to expand their capabilities beyond hunting for active threats that target systems. They can now analyze and prioritize their customer’s risks, while providing a more complete picture of their entire threat landscape with a kill chain for each attack. RidgeBot 4.0 combines two testing methodologies into one system: automated pentesting and adversary cyber emulation Ridge Security, a cutting-edge security validation automation solution provider, today announced the availability of RidgeBot 4.0, a major update to its proven, automated penetration testing capabilities. RidgeBot 4.0 unifies the blackbox based automated penetration testing and agent-based adversary cyber emulation testing into a single platform and management to deliver 360-degree enterprise security validation testing – now with expanded use cases. RidgeBot 4.0 also enables managed security service providers (MSSPs) to provide continuous security testing and pentration testing on demand to their customers. Ridge Security will showcase the solution during RSAC in San Francisco, from June 6-9. Eighteen Teams Compete in Knowledge-based Challenge Leveraging RidgeBot PenTest Solution Ridge Security, cutting-edge pen-testing solution provider, sponsored a Capture the Flag (CTF) at the annual ROOTCON 15 with eighteen teams participating and testing out their knowledge and skills in seven rounds of Vulnerability Exploitation challenges. ROOTCON brings together a global community of security experts, practitioners, and business developers with the aim of making the digital world a safer place. Reimagine ransomware: RidgeBot 3.2 targeted attack simulation are designed to combat high-profile ransomware attacks Ridge Security, cutting-edge pen-testing solution provider announces new capabilities in RidgeBot that combat ransomware. RidgeBot couples ethical hacking techniques with AI-driven, decision-making algorithms to help identify and validate weak credentials and frequently exploited vulnerabilities, in order to help minimize damage from simple or sophisticated, extortion-encryption attacks such as ransomware attacks. Ridge Security helps you stay on the front lines of cyber defense with advanced tools in latest release of RidgeBot Ridge Security, cutting-edge automated pen-testing solution provider, announces new capabilities in RidgeBot 3.4, for post-exploitation validation. This new release further differentiates RidgeBot from vulnerability scanners and 1-step auto-exploitation tools that are currently available and strengthens RidgeBot’s position as a true risk-based vulnerability management platform. From network, to host, to web applications, RidgeBot 3.5 delivers the most comprehensive pent-testing platform for risk-assessment Ridge Security, cutting-edge pen-testing solution provider, announces enhanced and new capabilities in RidgeBot™, the automated penetration testing platform. RidgeBot™ 3.5 features an expanded plugin set addressing critical security gaps in customers’ infrastructure, support for seamless 3rd party integration and continued global expansion in its partner ecosystem. In addition, with its advanced pen-testing capabilities in host servers, RidgeBot™ is solidly positioned as the most comprehensive, automated penetration testing tool covering network, host, and web applications.Endpoint Security and Network Monitoring News for the Week of January 9th: Exabeam, Hexnode, Ridge Security, and More
Ridge Security Announces Powerful New AWS, Windows Pentesting Features for RidgeBot 6.0
Ridge Security Achieves ISO/IEC 27001 Certification
Ransomware Gang Exploits Oracle Zero-Day to Steal Data of 3.5 Million University of Phoenix Students and Staff
University of Phoenix Discloses 3.5M-Record Data Breach Linked to Oracle EBS Zero-Day
AI Cyberthreats: The Rise of Counter-AI
LW ROUNDTABLE: Part 3, Cyber resilience faltered in 2025 — recalibration now under way
LW ROUNDTABLE: Part 3, Cyber resilience faltered in 2025 — recalibration now under way
How GenAI Uses Data Consumption And Learning To Transform Cybersecurity
Marquis Ransomware Breach: When Third-Party Vendors Become the Weakest Link in Financial Services
Over 4 billion lead-generation records exposed, including LinkedIn profiles
United States Penetration Testing Market 2031 | Growth Drivers, Key Players & Investment Opportunities
RidgeBot Available on Microsoft Azure Marketplace
Ransomware attack on Marquis Software Solutions targeted 74 banks
Aisuru, “the apex of botnets”, 29.7 Tbps DDoS attack highlighted by Cloudflare
Ridge Security debuts on Microsoft Azure Marketplace
Salesforce Confirms the Gainsight Incident Resulted in Customer Data Being Accessed
Salesforce: Some Customer Data Accessed via Gainsight Breach
Salesforce confirms 200+ orgs impacted by another third party Gainsight breach
Ridge Security Brings AI-Powered Penetration Testing to Microsoft Azure Marketplace to Enable Continuous Security Validation at Scale
Users Pasting Malware With Just One Shortcut
Cyber Insurance Cost Spikes Continue in UK as Annual Numbers Triple
Ridge Security Scores a 95% Willingness to Recommend in the 2025 Gartner Peer Insights™ Voice of the Customer for Adversarial Exposure Validation
Cyber-Insurance Payouts Soar 230% in UK
UK insurers pay nearly £200m to help businesses recover from cyber attacks
Ridge Security Announces RidgeGen, the Company’s Agentic AI Framework Driving the Next Evolution in Autonomous Security Validation
Ridge Security Launches RidgeSphere: A Centralized Management Platform for Multi-Tenant RidgeBot Deployments
Ridge Security Named to the Prestigious CRN Tech Elite 250 for 2025
Ridge Security Announces RidgeGen in RidgeBot 5.2: A GenAI-Based Security Service Module Enhancing Security Validation Efficiency and Accuracy
Ridge Security Bolsters its Board, Appointing Paul Auvil Senior Advisor
Top 10 Penetration Testing Solution Providers 2024
Ridge Security Recognized in Gartner’s 2024 Hype Cycle for Security Operations for Its Innovative Approach to Adversarial Exposure Validation
Ridge Security Technology Honored as Publisher’s Choice DevSecOps Vanguard and Lydia Zhang Named Market Leader Pioneering Woman in Cybersecurity
Ridge Security Technology Named Most Promising Cybersecurity Startup, Winner of the Coveted Global InfoSec Awards at RSA Conference 2024
A Tale of Overcoming Cyber Threats with Auto Pentesting and CTEM
Like Digital Cicadas,Like Digital Cicadas, Cybercriminals Lie In Wait Before Unleashing Their PresenceLike Digital Cicadas,
Ridge Security: Elevating Cyber Defenses with Rapid, AI-Driven Penetration Testing
Ridge Security Partners with BROAD Corporation to Deliver Top Tier Security Solutions in Japan
Ridge Security Recognized as a Strong Performer in the 2024 Gartner® Peer Insights™ Voice of the Customer.
Deciphering Cybersecurity Vulnerabilities Requires Context
Cybersecurity Teams Have to Do More Than ‘Walk and Chew Gum at the Same Time’
AI Data Consumption and Analysis are a Cybersecurity Force Multiplier
Are Unparalleled AI Deployments Outpacing Cybersecurity Capabilities?
Achieving a Successful Continuous Threat Exposure Management Program
Achieving a Successful Continuous Threat Exposure Management Program
Gartner Hype Cycle for Security Operations Spotlights Ridge Security in Two Critical Security Categories
Ridge Security Takes Home Two Coveted Global InfoSec Awards
The Evolution of Vulnerability Scanning and Pentesting
Ridge Security and Stellar Cyber Partner to Deliver an AI-Driven, High-Fidelity, Open XDR Security Platform
The Value of Integrating Exposure Management into MSSP/MDR Security Stacks
Ridge Security Announces Security Validation Hyperautomation Solution at RSAC 2022
Ridge Security Hosts First Capture the Flag (CTF) Competition at ROOTCON 15
Ridge Security Penetration Testing Solution Hardens Networks With Expanded Ransomware Protection
Ridge Security Automated Penetration Testing Solution Delivers Advanced Post-Exploitation Techniques
Ridge Security Announces Expanded Core Capabilities in RidgeBot with Enhanced Web Application Testing
