Hack The Box

Security testing can’t stay periodic when enterprise environments are moving continuously. In a new InfoWorld opinion article, Dimitris Bougioukas, SVP, IT Security Training Services at Hack The Box, explores how modern security teams can operationalize continuous purple teaming to keep pace with automated deployment cycles, AI-driven threats, and fast-changing attack techniques. The article breaks down how organizations can bring red and blue team tactics directly into security operations workflows through: • Automated attack scenario simulation • Lab-based validation embedded into operational workflows • Detection telemetry aligned with resilience and readiness KPIs • Integration with SIEM, SOAR, infrastructure-as-code, and existing toolchains • Controlled environments for testing AI red teaming tactics and defensive AI tooling As release velocity increases, continuous purple teaming helps security teams collaborate in real time, validate controls continuously, and build a feedback-driven culture without slowing the business down. Read the full article: https://okt.to/Gt9qVL #HackTheBox #PurpleTeaming #CyberSecurity #ContinuousSecurity #DetectionEngineering #RedTeam #BlueTeam #AIinCyberSecurity #CyberResilience

Cyber Teams Are Changing Fast. Here’s What the Data Says Comes Next… Last month, one thing stood out: cyber teams are changing fast, and the smartest strategies are being built on data, not guesswork. Our new workforce intelligence research explores how cyber skills, AI security priorities, and global upskilling trends are evolving across the industry, showing where AI security, offensive-defense convergence, and global upskilling are heading next. We’re also digging into continuous SOC readiness, AI-era CTFs, purple teaming, Linux kernel risk, and what agentic AI really means for financial services. Here’s what defined the last month.

Hack The Box is heading to the FS-ISAC EMEA Summit. From 15–18 June, we’ll be joining financial services security leaders to discuss the evolving threat landscape, workforce readiness, and the role of hands-on cyber training in building stronger, more resilient teams. You can find us at Booth #15 throughout the event. We’re also hosting a speaking session: Myth, Truth, and Reality: Agentic AI in Cybersecurity for FS Speaker: Konstantinos Dolkas, Chief Technology Officer, Hack The Box Date: 16 June 2026 Time: 12:15 PM – 1:00 PM CET Agentic AI is emerging in financial sector security operations, but its real capabilities remain unclear. This session will draw on results from large-scale cybersecurity simulations to explore where AI performs well, where it struggles, and what questions financial services organizations should ask when evaluating AI security tools. Attending FS-ISAC EMEA Summit? Come meet us at Booth #15. #HackTheBox #FSISAC #FSISACEMEA #CyberSecurity #FinancialServices #AgenticAI #AIinCyberSecurity #CyberResilience #CyberSecurityTraining

🚨 ICYMI - Last week's Content Drop🚨 Last week’s drop brings fresh content across digital forensics, Linux, and crypto. 🔎 CAMouflage — New Sherlock Difficulty: Easy Creator: M4shl3 Tech: Windows, Wireshark Knowledge domain: Digital Forensics Investigate a cracked application infection chain by parsing MFT and USN Journal artifacts, reconstructing execution timelines through Prefetch analysis, deobfuscating a dropped batch script, and tracing an AutoIt-based StealC v2 loader’s C2 communication. Also dropped: 💻 DevHub — New Machine Linux | 30 points | Releases 30 May 2026 🔐 Surprise Factor — New Challenge Hard | Crypto New week. New evidence. New paths to uncover. #HackTheBox #HTB #WeeklyContentDrop #Sherlock #DigitalForensics #Wireshark #WindowsForensics #Linux #Crypto #CyberSecurity

🏖️ Doing our part to keep our local communities clean. On May 14th, the HTB crew hit Floisvos Beach in Athens for a team cleanup. The final tally: ✨ 680 liters of waste cleared from the coast. ♻️ 100 liters of recyclables properly sorted. Swipe left to see our volunteers in action! 📸

How do you actually prepare a security workforce for the era of Agentic AI? While our recognition as a Forrester Wave™ Leader validates our vision, the real focus must be on execution. Our new webinar is live on-demand, featuring Petros Perselis, Gibb Witham, Christine Bartlett, and Gerasimos Marketos unpacking what operational readiness looks like in the age of automation. 👉 Watch the session: https://okt.to/35raXt

It's official. 🏆 Global Cyber Skills Benchmark 2026 has officially wrapped up, and the definitive scores are locked. Massive praise to the #cybersecurity teams who performed flawlessly under pressure and dominated the leaderboard: 🥇 PrimeRanks 🥈 GMO Cybersecurity by IERAE 🥉 CTFAE #HackTheBox #HTB #GCSB2026 #ProjectNightfall #CTF #CyberSkills #Cybersecurity #CaptureTheFlag

The results are in! 💻 Big congratulations to the winners of our latest giveaway: 🏆 supermeisty 🏆 l33tb0ySlim 🏆 L1nuxKid (Check your inbox/DMs for details on how to claim your prize!) We are happy that you've showcased your stories to us and look forward to seeing more XP journeys on the road ahead. Didn't win this time around? Keep your eyes peeled for more great opportunities with HTB coming very soon.

Credential theft remains one of the most common ways attackers move deeper into an environment. The new Credential Access Tradecraft Analysis module is now available on HTB Academy and HTB Enterprise, helping learners understand how credential access techniques are executed, detected, and investigated in real-world scenarios. Tier: 4 Difficulty: Hard Category: Defensive Built for defenders looking to strengthen their ability to analyze attacker tradecraft, spot credential access activity, and improve detection and response skills. Start learning: https://okt.to/6cJAFz #HackTheBox #HTBAcademy #HTBEnterprise #CyberSecurityTraining #BlueTeam #SOC #ThreatHunting #IncidentResponse #CredentialAccess

🚨 Weekly Content Drop🚨 This week’s drop brings a new Sherlock built around a full Windows domain compromise chain and the start of a new Season with Reactor. 🔎 New Sherlock: JobApplicant Difficulty: Hard Creator: chicken0248 Tech: Windows, Kerberos, IIS, NTFS Investigate a compromised web application portal where configuration abuse allows a PDF file to behave as a script and act as a webshell. From there, trace the attacker’s path through data exfiltration, domain controller access, Kerberoasting, AD CS certificate template abuse, DCSync, Golden Ticket persistence, and operational cleanup. Also dropping this week: ☢️ Reactor — First Machine of the Season Linux | 20 points | Releases 23 May 2026 #HackTheBox #HTB #WeeklyContentDrop #Sherlock #DigitalForensics #SOC #Kerberos #WindowsSecurity #IncidentResponse #CyberSecurity