Pentera

𝗣𝗲𝗻𝘁𝗲𝗿𝗮 𝘄𝗮𝘀 𝗻𝗮𝗺𝗲𝗱 𝗮 𝗟𝗲𝗮𝗱𝗲𝗿 𝗶𝗻 𝘁𝗵𝗲 𝗙𝗿𝗼𝘀𝘁 𝗥𝗮𝗱𝗮𝗿™: 𝗔𝘂𝘁𝗼𝗺𝗮𝘁𝗲𝗱 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗩𝗮𝗹𝗶𝗱𝗮𝘁𝗶𝗼𝗻, 𝟮𝟬𝟮𝟲. What stands out in this recognition is the lens Frost brings to the category across vision, execution, and real operational use. It underscores that 𝗰𝗼𝗻𝘁𝗶𝗻𝘂𝗼𝘂𝘀, 𝗮𝗱𝘃𝗲𝗿𝘀𝗮𝗿𝗶𝗮𝗹 𝘃𝗮𝗹𝗶𝗱𝗮𝘁𝗶𝗼𝗻 𝗶𝘀 𝗲𝘀𝘀𝗲𝗻𝘁𝗶𝗮𝗹 𝗳𝗼𝗿 𝗺𝗼𝗱𝗲𝗿𝗻 𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗽𝗿𝗼𝗴𝗿𝗮𝗺𝘀 - not point-in-time testing, but ongoing proof that defenses hold up as environments change. This recognition reflects a broader shift we’re seeing across the market: Security teams are being asked to do more than report on exposure. They’re expected to show what actually works, what breaks, and what’s worth fixing first, often in live environments that keep changing. At Pentera, that’s exactly how we believe security should be measured - continuously, with real attack emulation, and with evidence that defenses perform as intended. Thank you to Frost & Sullivan for the recognition, and to the security teams pushing validation forward every day. 👉 https://okt.to/cKZFVz #SecurityValidation #ExposureManagement #EnterpriseSecurity

𝗣𝗿𝗼𝘂𝗱 𝗺𝗼𝗺𝗲𝗻𝘁 𝗳𝗼𝗿 𝗼𝘂𝗿 𝗰𝗵𝗮𝗻𝗻𝗲𝗹 𝘁𝗲𝗮𝗺 👏 Peter Rodriguez, AVP of Channel Management at Pentera, has been named to the 𝟮𝟬𝟮𝟲 𝗖𝗥𝗡® 𝗖𝗵𝗮𝗻𝗻𝗲𝗹 𝗖𝗵𝗶𝗲𝗳𝘀 𝗹𝗶𝘀𝘁. Since joining Pentera in 2025, Peter has focused on strengthening partner enablement, aligning go-to-market teams, and investing in a partner-first approach that scales. The result is record partner-driven momentum, with the majority of new business now coming through our global channel community. This recognition from CRN® highlights leaders who are shaping channel strategy and driving partner growth across the ecosystem. For us, it reinforces something we have been intentionally building: a channel program designed to help partners win. Congratulations, Peter, on this well-earned recognition, and thank you to our partners for continuing to build with us. 🔗 Read more: https://okt.to/GO15PV #ChannelChiefs #CRN #ChannelFirst #Partners #Cybersecurity #Pentera

🎙 𝗣𝗲𝗻𝘁𝗲𝗿𝗮 𝗟𝗮𝗯𝘀 𝗪𝗲𝗯𝗶𝗻𝗮𝗿: 𝗪𝗵𝗲𝗻 𝘁𝗵𝗲 𝗟𝗮𝗯 𝗗𝗼𝗼𝗿 𝗦𝘁𝗮𝘆𝘀 𝗢𝗽𝗲𝗻: 𝗘𝘅𝗽𝗼𝘀𝗲𝗱 𝗖𝗹𝗼𝘂𝗱 𝗧𝗿𝗮𝗶𝗻𝗶𝗻𝗴 𝗔𝗽𝗽𝘀 𝗔𝗰𝘁𝗶𝘃𝗲𝗹𝘆 𝗘𝘅𝗽𝗹𝗼𝗶𝘁𝗲𝗱 New Pentera Labs research uncovered a blind spot hiding in plain sight: Intentionally vulnerable training and demo apps are running on enterprise-owned AWS, Azure, and GCP infrastructure. These apps are publicly exposed and actively compromised. Including environments tied to 𝗙𝗼𝗿𝘁𝘂𝗻𝗲 𝟱𝟬𝟬 𝗼𝗿𝗴𝗮𝗻𝗶𝘇𝗮𝘁𝗶𝗼𝗻𝘀. These are not zero-days. They are commonly used training apps left running with default configurations and overly permissive roles, now leveraged for cryptomining and infrastructure takeover. Join Noam Yaffe, Team Lead, Offensive Services Research and Eran Vaknin, VP Offensive Security at Pentera, as they break down: • How attackers discover and exploit training apps • What evidence of active compromise looks like • What security teams must fix next before attackers do 🗓 𝗙𝗲𝗯 𝟭𝟮, 𝟮𝟬𝟮𝟲 | 𝟭𝟭:𝟬𝟬 𝗔𝗠 𝗘𝗧 | 𝟱:𝟬𝟬 𝗣𝗠 𝗖𝗘𝗧 👉 Register now: https://okt.to/qUnfIp #PenteraLabs #CloudSecurity #SecurityResearch

𝗪𝗲 𝗱𝗼𝗻'𝘁 𝗷𝘂𝘀𝘁 𝗽𝗿𝗲𝗮𝗰𝗵 𝗰𝘆𝗯𝗲𝗿 𝗿𝗲𝗮𝗱𝗶𝗻𝗲𝘀𝘀. 𝗪𝗲 𝗽𝗿𝗮𝗰𝘁𝗶𝗰𝗲 𝗶𝘁. We did it last week. We ran an incident response tabletop exercise with teams across the company. There was a lot of adrenaline in the room and very high engagement throughout. Exactly what you want when you’re pressure testing how people think and act together. The session was led exceptionally well by Mor Asher 🇮🇱 and Yochanan Sharon from 1Pro Solutions, Cyber security and regulation professional services. Sharp facilitation, the right pace, and a constant push on decision making and ownership made the exercise count. We refined our procedures and sharpened our responses and methods. Some things held up. In other areas, we clearly saw where we need to improve. That visibility is the value. Kudos to Ran Kadury, our Director of Security, for organizing and driving this. There is always room to get better. There’s no doubt that the lessons from this exercise will make us more prepared as a company for whatever scenario we may face. At Pentera, this is how we build readiness. We do the work early so that even if an unlikely event occurs, we respond and act correctly. #IncidentResponse #TableTopExercise #OperationalResilience

𝗧𝗿𝗮𝗶𝗻𝗶𝗻𝗴 𝗮𝗽𝗽𝘀 𝗱𝗼𝗻’𝘁 𝗳𝗲𝗲𝗹 𝗿𝗶𝘀𝗸𝘆. 𝗧𝗵𝗮𝘁’𝘀 𝗲𝘅𝗮𝗰𝘁𝗹𝘆 𝘄𝗵𝘆 𝗮𝘁𝘁𝗮𝗰𝗸𝗲𝗿𝘀 𝗹𝗶𝗸𝗲 𝘁𝗵𝗲𝗺. As part of ongoing research at Pentera Labs, we revealed exposed instances of commonly used training and demo applications deployed within customer-managed cloud environments. These training apps, hosted on enterprise-owned infrastructure running on AWS, Azure, and GCP, weren’t just reachable. They were actively leveraged, with crypto-mining activity and persistence mechanisms running inside cloud accounts. The issue isn’t that these apps are vulnerable by design. It’s that they’re often deployed in real environments, given real permissions, and then forgotten. Once exposed, they become a predictable entry point. The research breaks down: • Where these exposures show up • How they are exploited • Why they’re so easy to miss 𝗙𝘂𝗹𝗹 𝗿𝗲𝘀𝗲𝗮𝗿𝗰𝗵 𝗳𝗿𝗼𝗺 𝗣𝗲𝗻𝘁𝗲𝗿𝗮 𝗟𝗮𝗯𝘀: https://okt.to/OgimPJ #PenteraLabs #CloudSecurity #SecurityResearch Noam Yaffe

𝗡𝗲𝘄 𝗼𝗳𝗳𝗶𝗰𝗲 𝗰𝗲𝗹𝗲𝗯𝗿𝗮𝘁𝗶𝗼𝗻: 𝗧𝘂𝗿𝗻𝗶𝗻𝗴 𝘂𝗽 𝘁𝗵𝗲 𝘃𝗼𝗹𝘂𝗺𝗲 𝗼𝗻 𝟮𝟬𝟮𝟲 🎙️ Celebrating the opening of our new Tel Aviv offices with good music, high energy, and the people who make Pentera what it is. 102FM’s morning show with Nelly Tagar and Maya Wertheimer broadcasted live from our office, with Penterians dedicating songs in celebration. Later, we gathered employees and friends to celebrate not just a new space, but a milestone few companies reach: crossing $100M ARR. It’s a meaningful moment for us. One that reflects years of building here, steady growth, and a team that keeps raising the bar without making noise about it. This day felt very us. We’re hiring. Careers link in the comments. Amitai Ratzon Arik Liberzon Tzurit Golan Shalom Tel Aviv #PenteraLife #NewOffice #WeAreHiring #Growth

𝗖𝘂𝗹𝘁𝘂𝗿𝗲 𝗶𝘀𝗻’𝘁 𝗯𝘂𝗶𝗹𝘁 𝗶𝗻 𝗭𝗼𝗼𝗺 𝘀𝗾𝘂𝗮𝗿𝗲𝘀. A cold Boston night, a Celtics game, and a few teammates catching up without Slack, calendars, or mute buttons. Moments like these matter. They’re what keep our culture real, even when we’re spread across different locations. Onward to a strong year ahead 🍀 #PenteraLife

𝗣𝗵𝗶𝘀𝗵𝗶𝗻𝗴 𝗴𝗼𝗲𝘀 𝗯𝗲𝘆𝗼𝗻𝗱 𝘁𝗵𝗲 𝗰𝗹𝗶𝗰𝗸. 𝗔𝗻𝗱 𝘀𝗼 𝗱𝗼 𝘄𝗲. Most tools stop at the lure. At Pentera, we mimic the whole attack. Validating phishing scenarios at scale requires more than a deceptive email. It requires testing how identity, access, lateral movement, and controls actually behave when an attacker operates end to end. This Tuesday, Amit Porat and Ben Ilkashi will take the stage at 𝗖𝘆𝗯𝗲𝗿 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗠𝗼𝗻𝗴𝗼𝗗𝗕 𝗗𝗲𝘃𝗲𝗹𝗼𝗽𝗲𝗿 𝗗𝗮𝘆 𝗶𝗻 𝗧𝗲𝗹 𝗔𝘃𝗶𝘃 to talk about how Pentera engineers enable cyber defenders to challenge the traditional approach to phishing validation and prove whether their defenses really hold. The result is not just better testing. It is resilience built by defenders who assume breach and validate continuously. If you’re attending, find Amit and Ben to talk cyber research, engineering, and the architecture behind Automated Security Validation. 𝗥𝗲𝗴𝗶𝘀𝘁𝗲𝗿 𝗵𝗲𝗿𝗲: https://okt.to/05mYi7 Tuesday, January 13 | 09:00 AWS Experience Center, Floor 28, Tel Aviv Hosted by MongoDB and AWS AI Igor Shoykhet  Or Maccabi  Noam Doron #CyberSecurity #SecurityValidation #Engineering #Phishing #TelAviv

$𝟭𝟬𝟬𝗠 𝗔𝗥𝗥 𝗴𝗲𝘁𝘀 𝗮𝘁𝘁𝗲𝗻𝘁𝗶𝗼𝗻. But it’s not the story. What often gets missed is what it actually takes to get there. In this reflection, Pentera CEO Amitai Ratzon shares the less visible side of the journey: decisions without clear answers, mistakes that shape the path forward, real trade-offs, and moments where progress isn’t linear and confidence isn’t guaranteed. From building a Unicorn without a playbook to choosing long-term principles over short-term wins, this isn’t a celebration post. It’s an honest look at what it takes to build something real - and to keep building as the weight gets heavier. If you’re leading, scaling, or carrying responsibility for something that matters, this reflection is worth your time. 👉 https://okt.to/UVlZR0

𝐏𝐞𝐧𝐭𝐞𝐫𝐚 𝐡𝐚𝐬 𝐫𝐞𝐚𝐜𝐡𝐞𝐝 𝐚 𝐝𝐞𝐟𝐢𝐧𝐢𝐧𝐠 𝐦𝐢𝐥𝐞𝐬𝐭𝐨𝐧𝐞. We’ve become the 𝐟𝐢𝐫𝐬𝐭 𝐀𝐝𝐯𝐞𝐫𝐬𝐚𝐫𝐢𝐚𝐥 𝐄𝐱𝐩𝐨𝐬𝐮𝐫𝐞 𝐕𝐚𝐥𝐢𝐝𝐚𝐭𝐢𝐨𝐧 (𝐀𝐄𝐕) 𝐯𝐞𝐧𝐝𝐨𝐫 𝐭𝐨 𝐬𝐮𝐫𝐩𝐚𝐬𝐬 $𝟏𝟎𝟎𝐌 𝐢𝐧 𝐀𝐑𝐑, achieving Centaur status just 𝐬𝐞𝐯𝐞𝐧 𝐲𝐞𝐚𝐫𝐬 𝐚𝐟𝐭𝐞𝐫 𝐠𝐨𝐢𝐧𝐠 𝐭𝐨 𝐦𝐚𝐫𝐤𝐞𝐭. This moment reflects more than growth. As our CEO Amitai Ratzon puts it: “Becoming the first adversarial testing company to surpass $100 million in ARR is the result of focus, commitment and a great product-market fit. Our customers are running thousands of automated tests per quarter, validating the security of their core infrastructure, cloud services, business applications and AI platforms, proving resilience and accelerating time to remediation with no added headcount.” In 2025 alone, we: • Introduced 𝐏𝐞𝐧𝐭𝐞𝐫𝐚 𝐑𝐞𝐬𝐨𝐥𝐯𝐞 and 𝐏𝐞𝐧𝐭𝐞𝐫𝐚 𝐎𝐟𝐟𝐞𝐧𝐬𝐢𝐯𝐞 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐒𝐞𝐫𝐯𝐢𝐜𝐞𝐬 • Completed 𝐭𝐰𝐨 𝐬𝐭𝐫𝐚𝐭𝐞𝐠𝐢𝐜 𝐚𝐜𝐪𝐮𝐢𝐬𝐢𝐭𝐢𝐨𝐧𝐬 • Raised $𝟔𝟎𝐌 𝐢𝐧 𝐒𝐞𝐫𝐢𝐞𝐬 𝐃 𝐟𝐮𝐧𝐝𝐢𝐧𝐠 • Embedded 𝐧𝐚𝐭𝐢𝐯𝐞 𝐀𝐈 𝐜𝐚𝐩𝐚𝐛𝐢𝐥𝐢𝐭𝐢𝐞𝐬, including AI powered reporting and AI based web attack testing • Expanded globally with new offices in 𝐂𝐨𝐥𝐨𝐫𝐚𝐝𝐨, 𝐌𝐚𝐝𝐫𝐢𝐝, and 𝐓𝐞𝐥 𝐀𝐯𝐢𝐯 Thank you to our customers, partners, and Pentera team for trusting validation over assumption. Here’s to raising the bar for security validation. 👉 Read the full announcement: https://okt.to/rH6QSt #Pentera #SecurityValidation #AEV #CTEM #CybersecurityLeadership