https://www.hackthebox.com/rss/blog/all All the latest news and insights about cybersecurity from Hack The Box. Hacking trends, insights, interviews, stories, and much more en https://www.hackthebox.com/images/landingv3/logo-htb-blog.svg https://www.hackthebox.com/rss/blog/all https://www.hackthebox.com/blog/htb-cybersecurity-workforce-intelligence-report New global data shows AI is changing cybersecurity roles, accelerating demand for advanced capabilities and forcing CISOs to rethink workforce planning ]]> All Content Tue, 19 May 2026 09:00:00 +0000 https://www.hackthebox.com/blog/htb-cybersecurity-workforce-intelligence-report https://www.hackthebox.com/blog/rsac-2026-interview-htb Reflections from Gerasimos Marketos, Chief Product Officer at Hack The Box (HTB), following his RSAC 2026 interview on the Security by Default podcast. ]]> All Content Thu, 14 May 2026 14:15:00 +0000 https://www.hackthebox.com/blog/rsac-2026-interview-htb https://www.hackthebox.com/blog/lloyds-banking-google-cloud-security-htb-hackathon ]]> All Content Wed, 13 May 2026 15:08:00 +0000 https://www.hackthebox.com/blog/lloyds-banking-google-cloud-security-htb-hackathon https://www.hackthebox.com/blog/linux-kernel-copy-fail-cve-2026-31431 CVE-2026-31431 "Copy Fail" is a deterministic Linux LPE flaw granting root access across cloud workloads. Understand the business risks and immediate actions required. ]]> All Content Mon, 11 May 2026 13:20:00 +0000 https://www.hackthebox.com/blog/linux-kernel-copy-fail-cve-2026-31431 https://www.hackthebox.com/blog/continous-readiness-train-your-soc Stop pausing your SOC. Learn how LetsDefend and HTB turn downtime into high-impact learning for continuous readiness without sacrificing operational coverage. ]]> All Content Thu, 07 May 2026 12:05:00 +0000 https://www.hackthebox.com/blog/continous-readiness-train-your-soc https://www.hackthebox.com/blog/global-cyber-skills-benchmark-2026 Join GCSB 2026: Task Force Nightfall on May 15. A free, worldwide CTF for corporate teams. Hunt APTs and win from a $38k prize pool. ]]> All Content Wed, 06 May 2026 12:50:00 +0000 https://www.hackthebox.com/blog/global-cyber-skills-benchmark-2026 https://www.hackthebox.com/blog/hack-the-box-locked-shields-2026 ]]> All Content Tue, 05 May 2026 14:43:00 +0000 https://www.hackthebox.com/blog/hack-the-box-locked-shields-2026 https://www.hackthebox.com/blog/path-traversal-vulnerabilities-in-jupyter-nbconvert Think Jupyter notebooks are safe? This breakdown reveals how nbconvert path traversal flaws allow file reads and writes without ever executing a single cell. ]]> All Content Tue, 28 Apr 2026 14:23:00 +0000 https://www.hackthebox.com/blog/path-traversal-vulnerabilities-in-jupyter-nbconvert https://www.hackthebox.com/blog/the-automation-paradox The structural integrity of global authentication is facing a new form of pressure. ]]> All Content Fri, 24 Apr 2026 13:59:00 +0000 https://www.hackthebox.com/blog/the-automation-paradox https://www.hackthebox.com/blog/semperis-names-htb-action-partner ]]> All Content Tue, 21 Apr 2026 09:25:00 +0000 https://www.hackthebox.com/blog/semperis-names-htb-action-partner https://www.hackthebox.com/blog/XP-Points Are you ready to get some XP? Check out this blog and learn how your lifetime efforts on HTB will be ranked! ]]> All Content Mon, 20 Apr 2026 12:20:00 +0000 https://www.hackthebox.com/blog/XP-Points https://www.hackthebox.com/blog/htb-wins-2026-industry-awards ]]> All Content Thu, 16 Apr 2026 11:10:00 +0000 https://www.hackthebox.com/blog/htb-wins-2026-industry-awards https://www.hackthebox.com/blog/HTB-COAE-Announcement Join us for the launch of the HTB Certified Offensive AI Expert (HTB COAE). The future includes hackers who know how to attack AI. ]]> All Content Thu, 02 Apr 2026 12:11:00 +0000 https://www.hackthebox.com/blog/HTB-COAE-Announcement https://www.hackthebox.com/blog/CVE-2026-27944-CVE-2026-3888 Learn all about CVE-2026-27944 and CVE-2026-3888, two high-impact vulnerabilities affecting Nginx-UI and snapd, enabling unauthenticated data exposure and local privilege escalation. ]]> All Content Mon, 23 Mar 2026 13:27:00 +0000 https://www.hackthebox.com/blog/CVE-2026-27944-CVE-2026-3888 https://www.hackthebox.com/blog/hack-the-box-named-leader-forrester-wave-cybersecurity-training-platforms-2026 Cybersecurity upskilling innovator receives highest possible scores in 13 criteria, including Agentic AI readiness, gamification, competition and recognition, accessibility, and community ]]> All Content Wed, 11 Mar 2026 14:03:00 +0000 https://www.hackthebox.com/blog/hack-the-box-named-leader-forrester-wave-cybersecurity-training-platforms-2026 https://www.hackthebox.com/blog/hack-the-box-forrester-cybersecurity-training-leader-2026 Hack The Box has been named a Leader in The Forrester Wave: Cybersecurity Skills and Training Platforms. Again. ]]> All Content Wed, 11 Mar 2026 14:00:00 +0000 https://www.hackthebox.com/blog/hack-the-box-forrester-cybersecurity-training-leader-2026 https://www.hackthebox.com/blog/ai-vs-human-cybersecurity-benchmark Why Hack The Box’s largest AI vs. human Capture The Flag (CTF) study matters for CISOs and business leaders, and how to act now ]]> All Content Thu, 05 Mar 2026 10:00:00 +0000 https://www.hackthebox.com/blog/ai-vs-human-cybersecurity-benchmark https://www.hackthebox.com/blog/hack-the-box-ai-cybersecurity-benchmark-report Largest AI vs. human CTF study reveals significant speed gains for elite teams, exposes inflection points for junior and mid-tier talent, and underscores the need for an AI-fluent workforce ]]> All Content Thu, 05 Mar 2026 10:00:00 +0000 https://www.hackthebox.com/blog/hack-the-box-ai-cybersecurity-benchmark-report https://www.hackthebox.com/blog/htb-c3sa-partnership Partnership aims to advance Canada’s cybersecurity mission through continuous readiness, hands-on workforce development, and operational resilience. ]]> All Content Mon, 02 Mar 2026 13:00:00 +0000 https://www.hackthebox.com/blog/htb-c3sa-partnership https://www.hackthebox.com/blog/offensive-ai-security-ctf-llm-prompt-injection-ml-backdoors Learn how offensive AI security exposes LLM, agent, and ML vulnerabilities—from prompt injection to model backdoors—and how CTF training helps teams secure before the attackers exploit them. ]]> All Content Tue, 17 Feb 2026 10:00:00 +0000 https://www.hackthebox.com/blog/offensive-ai-security-ctf-llm-prompt-injection-ml-backdoors https://www.hackthebox.com/blog/introducing-htb-profile The HTB Profile is now live, bringing your skills, progress, and achievements into one clean view. Show the world where you stand and what you’ve mastered. ]]> All Content Thu, 12 Feb 2026 06:24:00 +0000 https://www.hackthebox.com/blog/introducing-htb-profile https://www.hackthebox.com/blog/ai-range-llm-security-benchmark Discover how Hack The Box AI Range benchmarks LLMs in realistic cyber scenarios. Explore the methodology, key findings, and why it sets a new standard for AI security performance. ]]> All Content Thu, 12 Feb 2026 04:03:00 +0000 https://www.hackthebox.com/blog/ai-range-llm-security-benchmark https://www.hackthebox.com/blog/enterprise-wifi-pentesting-risk-cwpe Enterprise Wi-Fi is a high-risk but under-tested attack surface. Learn how modern wireless attacks work and how HTB CWPE builds real-world Wi-Fi pentesting skills. ]]> All Content Tue, 10 Feb 2026 11:35:00 +0000 https://www.hackthebox.com/blog/enterprise-wifi-pentesting-risk-cwpe https://www.hackthebox.com/blog/ai-range-use-cases AI model evaluation is now essential for secure AI in cybersecurity. See how teams use HTB AI Range to test, validate safety, and harden models against evolving threats. ]]> All Content Tue, 10 Feb 2026 02:48:00 +0000 https://www.hackthebox.com/blog/ai-range-use-cases https://www.hackthebox.com/blog/ai-security-key-takeaways-webinar-cybersecurity AI security in 2026 is redefining cybersecurity. Discover 8 key takeaways from our expert webinar on AI-driven threats, autonomous systems, and how security teams must adapt. ]]> All Content Mon, 09 Feb 2026 11:15:00 +0000 https://www.hackthebox.com/blog/ai-security-key-takeaways-webinar-cybersecurity https://www.hackthebox.com/blog/detecting-investigating-c2-communication Learn how to detect and investigate command-and-control (C2) communication using log analysis, network traffic monitoring, EDR, and threat intelligence. ]]> All Content Thu, 05 Feb 2026 14:18:42 +0000 https://www.hackthebox.com/blog/detecting-investigating-c2-communication https://www.hackthebox.com/blog/netpoleon-hack-the-box-partnership-anz-cybersecurity-skills Netpoleon partners with Hack The Box to bring hands-on, AI-driven cybersecurity training to Australia and New Zealand, helping organisations build real-world cyber skills. ]]> All Content Tue, 03 Feb 2026 08:05:00 +0000 https://www.hackthebox.com/blog/netpoleon-hack-the-box-partnership-anz-cybersecurity-skills https://www.hackthebox.com/blog/networkminer-linux-packet-analysis-incident-response NetworkMiner remains a practical network forensics tool for Linux-based incident response. Learn where packet analysis still delivers value in modern security operations. ]]> All Content Mon, 02 Feb 2026 12:05:00 +0000 https://www.hackthebox.com/blog/networkminer-linux-packet-analysis-incident-response https://www.hackthebox.com/blog/us-federal-judiciary-cyberattacks-solarwinds-pacer A technical breakdown of the 2020 and 2025 cyberattacks on US federal judiciary systems, including SolarWinds, PACER vulnerabilities, and key defensive lessons. ]]> All Content Fri, 30 Jan 2026 13:57:00 +0000 https://www.hackthebox.com/blog/us-federal-judiciary-cyberattacks-solarwinds-pacer https://www.hackthebox.com/blog/HTB-CWPE-announcement-blog Crack open the HTB CWPE's network exam and add Wi-Fi pentesting skills to your arsenal of corporate level attacks ]]> All Content Thu, 29 Jan 2026 09:58:00 +0000 https://www.hackthebox.com/blog/HTB-CWPE-announcement-blog https://www.hackthebox.com/blog/evaluate-ai-soc-agents-htb-ai-range AI SOC agents are transforming security operations. Learn how to evaluate their real impact, and how Hack The Box AI Range helps benchmark their performance. ]]> All Content Thu, 29 Jan 2026 02:25:00 +0000 https://www.hackthebox.com/blog/evaluate-ai-soc-agents-htb-ai-range https://www.hackthebox.com/blog/n8n-ni8mare-cve-2026-21858-cve-2025-68613 Dive into Ni8mare (CVE-2026-21858) and CVE-2025-68613—two critical n8n bugs that chain into unauthenticated RCE. See the exploit in action and practice on our new BloodFlow machine. ]]> All Content Wed, 28 Jan 2026 16:08:00 +0000 https://www.hackthebox.com/blog/n8n-ni8mare-cve-2026-21858-cve-2025-68613 https://www.hackthebox.com/blog/cybersecurity-careers-pros-cons-salaries Explore the real pros and cons of cybersecurity careers in 2025, including salaries, job security, career paths, and workplace realities. ]]> All Content Tue, 27 Jan 2026 11:11:00 +0000 https://www.hackthebox.com/blog/cybersecurity-careers-pros-cons-salaries https://www.hackthebox.com/blog/HTB-Season-10-Underground Our 10th Seasonal competition focuses on you! Underground is a celebration of hackers that make each Season shine. ]]> All Content Fri, 23 Jan 2026 18:24:00 +0000 https://www.hackthebox.com/blog/HTB-Season-10-Underground https://www.hackthebox.com/blog/learn-to-hack-beginners-bible The truth behind learning the wonderful wizardry of hacking. Here's what it takes to learn hacking from scratch and the necessary steps to get started! ]]> All Content Mon, 19 Jan 2026 02:23:00 +0000 https://www.hackthebox.com/blog/learn-to-hack-beginners-bible https://www.hackthebox.com/blog/hack-the-box-supports-fbi-cyber-training-idiq-with-solutions3 Hands-on, threat-realistic cyber labs will support operational readiness across structured FBI learning pathways, in partnership with Solutions³ LLC. ]]> All Content Wed, 14 Jan 2026 17:08:00 +0000 https://www.hackthebox.com/blog/hack-the-box-supports-fbi-cyber-training-idiq-with-solutions3 https://www.hackthebox.com/blog/codefest-ctf-2025-htb-nab Discover how NAB and Hack The Box brought CodeFest 2025 to life with an inclusive, hands-on CTF that’s shaping Australia’s next generation of cybersecurity talent. ]]> All Content Wed, 14 Jan 2026 11:28:10 +0000 https://www.hackthebox.com/blog/codefest-ctf-2025-htb-nab https://www.hackthebox.com/blog/quality-hacking-labs-experience-with-dedispawn Discover how our dedicated Machine instances will deliver a much smoother hacking experience on HTB Labs. ]]> All Content Tue, 13 Jan 2026 08:30:00 +0000 https://www.hackthebox.com/blog/quality-hacking-labs-experience-with-dedispawn https://www.hackthebox.com/blog/g2-winter-2026-badges-cybersecurity-skills-leadership HTB wins nine G2 Winter 2026 badges, recognizing leadership in cybersecurity training, technical skills development, and global workforce upskilling based on real customer reviews. ]]> All Content Mon, 12 Jan 2026 12:37:00 +0000 https://www.hackthebox.com/blog/g2-winter-2026-badges-cybersecurity-skills-leadership https://www.hackthebox.com/blog/war-room-mongobleed-cve-2025-14847-mongodb-memory-leak-vulnerability Learn all about CVE-2025-14847, the High Vulnerability MongoDB memory leak vulnerability allowing unauthenticated memory disclosure. ]]> All Content Wed, 07 Jan 2026 12:30:00 +0000 https://www.hackthebox.com/blog/war-room-mongobleed-cve-2025-14847-mongodb-memory-leak-vulnerability https://www.hackthebox.com/blog/cybersecurity-blue-team-jobs-roles-salaries-skills Explore top blue team cybersecurity jobs in 2026, including SOC, IR, threat intel, and security engineering roles. Learn skills, career paths, and salaries. ]]> All Content Fri, 02 Jan 2026 18:47:00 +0000 https://www.hackthebox.com/blog/cybersecurity-blue-team-jobs-roles-salaries-skills https://www.hackthebox.com/blog/ai-red-teamer-path-complete-offense-defense-privacy Our AI Red Teamer Path is complete, with hands-on AI Defense and AI Privacy modules, helping security teams harden models, prevent data leakage, and stay ahead of emerging AI threats. ]]> All Content Tue, 23 Dec 2025 04:17:00 +0000 https://www.hackthebox.com/blog/ai-red-teamer-path-complete-offense-defense-privacy https://www.hackthebox.com/blog/windows-pwnbox-enterprise-cyber-training Launch Windows Pwnbox for enterprise teams. Train blue and red teams in native Windows and Linux environments, fully in-browser, with no setup or infrastructure overhead. ]]> All Content Tue, 23 Dec 2025 03:13:00 +0000 https://www.hackthebox.com/blog/windows-pwnbox-enterprise-cyber-training https://www.hackthebox.com/blog/threat-range-scenario-soc-readiness-ctem Sharpen SOC and DFIR readiness with Threat Range. See how real attacker tradecraft, CTEM alignment, and measurable performance metrics prepare teams for today’s breaches. ]]> All Content Fri, 19 Dec 2025 14:21:00 +0000 https://www.hackthebox.com/blog/threat-range-scenario-soc-readiness-ctem https://www.hackthebox.com/blog/godrat-financial-sector-attack-analysis A deep dive into GodRAT’s financial sector intrusion, mapping its attack chain, steganographic loaders, and RAT techniques to MITRE ATT&CK and real-world defenses. ]]> All Content Thu, 18 Dec 2025 17:00:00 +0000 https://www.hackthebox.com/blog/godrat-financial-sector-attack-analysis https://www.hackthebox.com/blog/turn-exposure-data-into-cyber-readiness-7-key-takeaways-threat-range Discover 7 key takeaways from our webinar on turning exposure data into real-world cyber readiness with Threat Range, our team-based simulation platform. ]]> All Content Wed, 17 Dec 2025 12:01:00 +0000 https://www.hackthebox.com/blog/turn-exposure-data-into-cyber-readiness-7-key-takeaways-threat-range https://www.hackthebox.com/blog/penetration-tester-fedramp HTB continues to gain traction as a go-to certification for cybersecurity professionals working in or with the U.S. government. ]]> All Content Thu, 11 Dec 2025 05:02:00 +0000 https://www.hackthebox.com/blog/penetration-tester-fedramp https://www.hackthebox.com/blog/s-oliver Learn how S.OLIVER GROUP identifies issues faster, interprets technical signals more confidently, and makes clearer, more targeted decisions during security-critical moments. ]]> All Content Thu, 11 Dec 2025 02:16:00 +0000 https://www.hackthebox.com/blog/s-oliver https://www.hackthebox.com/blog/react2shell-cve-2025-55182-threat-spotlight A deep dive into React2Shell (CVE-2025-55182), the critical remote code execution vulnerability affecting React Server Components and Next.js. ]]> All Content Wed, 10 Dec 2025 12:01:00 +0000 https://www.hackthebox.com/blog/react2shell-cve-2025-55182-threat-spotlight https://www.hackthebox.com/blog/operationalizing-owasp-llm-top-10-llm-security-controls Deploying LLMs without chaos means treating the OWASP LLM Top 10 like an engineering spec. Learn how to turn each risk into real controls, harden pipelines, and secure GenAI apps. ]]> All Content Tue, 09 Dec 2025 16:21:46 +0000 https://www.hackthebox.com/blog/operationalizing-owasp-llm-top-10-llm-security-controls