<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" version="2.0">
  <channel>
    <title>blog</title>
    <link>https://blog.xplt.com/blog</link>
    <description />
    <language>en-us</language>
    <pubDate>Tue, 07 Jul 2026 17:55:15 GMT</pubDate>
    <dc:date>2026-07-07T17:55:15Z</dc:date>
    <dc:language>en-us</dc:language>
    <item>
      <title>Attackers’ Truth: Adapting the Storm-2949 Cloud Breach for Red Teaming</title>
      <link>https://blog.xplt.com/blog/attackers-truth-adapting-the-storm-2949-cloud-breach-for-red-teaming</link>
      <description>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/attackers-truth-adapting-the-storm-2949-cloud-breach-for-red-teaming?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/Newsletter/storm-2949_red_team_attack_chain.png" alt="Attackers’ Truth: Adapting the Storm-2949 Cloud Breach for Red Teaming" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;p style="line-height: 1.15;"&gt;&lt;span style="color: #000000;"&gt;In February 2026, a critical manufacturing organization was compromised not by zero-day malware, but by their own cloud architecture.&lt;/span&gt;&lt;/p&gt;</description>
      <content:encoded>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/attackers-truth-adapting-the-storm-2949-cloud-breach-for-red-teaming?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/Newsletter/storm-2949_red_team_attack_chain.png" alt="Attackers’ Truth: Adapting the Storm-2949 Cloud Breach for Red Teaming" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;p style="line-height: 1.15;"&gt;&lt;span style="color: #000000;"&gt;In February 2026, a critical manufacturing organization was compromised not by zero-day malware, but by their own cloud architecture.&lt;/span&gt;&lt;/p&gt;  
&lt;img src="https://track.hubspot.com/__ptq.gif?a=48715716&amp;amp;k=14&amp;amp;r=https%3A%2F%2Fblog.xplt.com%2Fblog%2Fattackers-truth-adapting-the-storm-2949-cloud-breach-for-red-teaming&amp;amp;bu=https%253A%252F%252Fblog.xplt.com%252Fblog&amp;amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "&gt;</content:encoded>
      <pubDate>Tue, 07 Jul 2026 17:39:27 GMT</pubDate>
      <author>johannes@xplt.com (Johannes Schoenborn)</author>
      <guid>https://blog.xplt.com/blog/attackers-truth-adapting-the-storm-2949-cloud-breach-for-red-teaming</guid>
      <dc:date>2026-07-07T17:39:27Z</dc:date>
    </item>
    <item>
      <title>Cybersecurity Breakfast Session together with the Austiran Business Council, Netherlands Business Council and the German Emirati Joint Council for Industry &amp; Commerce</title>
      <link>https://blog.xplt.com/blog/cybersecurity-breakfast-session-together-with-the-austiran-business-council-netherlands-business-council-and-the-german-emirati-joint-council-for-industry-commerce</link>
      <description>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/cybersecurity-breakfast-session-together-with-the-austiran-business-council-netherlands-business-council-and-the-german-emirati-joint-council-for-industry-commerce?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/preview_2026_ahk.png" alt="Cybersecurity Breakfast Session together with the Austiran Business Council, Netherlands Business Council and the German Emirati Joint Council for Industry &amp;amp; Commerce" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;p style="line-height: 1.15;"&gt;Speaking at the recent Austrian Business Council UAE cybersecurity event reinforced a critical market reality. The region is building the future, but foundational security is trailing behind the pace of innovation.&lt;/p&gt;</description>
      <content:encoded>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/cybersecurity-breakfast-session-together-with-the-austiran-business-council-netherlands-business-council-and-the-german-emirati-joint-council-for-industry-commerce?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/preview_2026_ahk.png" alt="Cybersecurity Breakfast Session together with the Austiran Business Council, Netherlands Business Council and the German Emirati Joint Council for Industry &amp;amp; Commerce" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;p style="line-height: 1.15;"&gt;Speaking at the recent Austrian Business Council UAE cybersecurity event reinforced a critical market reality. The region is building the future, but foundational security is trailing behind the pace of innovation.&lt;/p&gt;  
&lt;img src="https://track.hubspot.com/__ptq.gif?a=48715716&amp;amp;k=14&amp;amp;r=https%3A%2F%2Fblog.xplt.com%2Fblog%2Fcybersecurity-breakfast-session-together-with-the-austiran-business-council-netherlands-business-council-and-the-german-emirati-joint-council-for-industry-commerce&amp;amp;bu=https%253A%252F%252Fblog.xplt.com%252Fblog&amp;amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "&gt;</content:encoded>
      <pubDate>Mon, 06 Jul 2026 18:27:24 GMT</pubDate>
      <author>johannes@xplt.com (Johannes Schoenborn)</author>
      <guid>https://blog.xplt.com/blog/cybersecurity-breakfast-session-together-with-the-austiran-business-council-netherlands-business-council-and-the-german-emirati-joint-council-for-industry-commerce</guid>
      <dc:date>2026-07-06T18:27:24Z</dc:date>
    </item>
    <item>
      <title>One-Off vs. Managed Pentesting: What Financial Institutions Must Know</title>
      <link>https://blog.xplt.com/blog/one-off-vs-managed-penetration-testing-what-financial-institutions-must-know</link>
      <description>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/one-off-vs-managed-penetration-testing-what-financial-institutions-must-know?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/AI-Generated%20Media/Images/The%20image%20depicts%20a%20sleek%20modern%20office%20environment%20within%20a%20financial%20institution%20In%20the%20foreground%20a%20diverse%20group%20of%20professionals%20including%20men%20and%20women%20of%20various%20ethnicities%20are%20engaged%20in%20a%20collaborative%20discussion%20around%20a%20large%20conference%20t-1.jpeg" alt="One-Off vs. Managed Pentesting: What Financial Institutions Must Know" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;p&gt;&lt;strong&gt;Banks and large enterprises are not defined by a single website or mobile app.&lt;/strong&gt; A modern financial institution might operate &lt;strong&gt;hundreds of interconnected services&lt;/strong&gt; – from customer-facing portals to backend APIs, building management systems, and even IoT-based CCTV solutions. Each of these systems is a potential attack vector, and each has its own compliance and testing rhythm.&lt;/p&gt;</description>
      <content:encoded>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/one-off-vs-managed-penetration-testing-what-financial-institutions-must-know?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/AI-Generated%20Media/Images/The%20image%20depicts%20a%20sleek%20modern%20office%20environment%20within%20a%20financial%20institution%20In%20the%20foreground%20a%20diverse%20group%20of%20professionals%20including%20men%20and%20women%20of%20various%20ethnicities%20are%20engaged%20in%20a%20collaborative%20discussion%20around%20a%20large%20conference%20t-1.jpeg" alt="One-Off vs. Managed Pentesting: What Financial Institutions Must Know" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;p&gt;&lt;strong&gt;Banks and large enterprises are not defined by a single website or mobile app.&lt;/strong&gt; A modern financial institution might operate &lt;strong&gt;hundreds of interconnected services&lt;/strong&gt; – from customer-facing portals to backend APIs, building management systems, and even IoT-based CCTV solutions. Each of these systems is a potential attack vector, and each has its own compliance and testing rhythm.&lt;/p&gt;  
&lt;img src="https://track.hubspot.com/__ptq.gif?a=48715716&amp;amp;k=14&amp;amp;r=https%3A%2F%2Fblog.xplt.com%2Fblog%2Fone-off-vs-managed-penetration-testing-what-financial-institutions-must-know&amp;amp;bu=https%253A%252F%252Fblog.xplt.com%252Fblog&amp;amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "&gt;</content:encoded>
      <category>cybersecurity</category>
      <pubDate>Sat, 26 Jul 2025 08:27:33 GMT</pubDate>
      <author>johannes@xplt.com (Johannes Schoenborn)</author>
      <guid>https://blog.xplt.com/blog/one-off-vs-managed-penetration-testing-what-financial-institutions-must-know</guid>
      <dc:date>2025-07-26T08:27:33Z</dc:date>
    </item>
    <item>
      <title>Pandas, Bears and Threat Actors: Why Red Teaming Goes Beyond CVEs</title>
      <link>https://blog.xplt.com/blog/pandas-bears-and-threat-actors-why-red-teaming-goes-beyond-cves</link>
      <description>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/pandas-bears-and-threat-actors-why-red-teaming-goes-beyond-cves?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/AI-Generated%20Media/Images/The%20image%20features%20a%20stylized%20digital%20artwork%20depicting%20a%20panda%20and%20a%20bear%20each%20representing%20different%20cyber%20threat%20actors%20The%20panda%20adorned%20with%20a%20sleek%20modern%20design%20symbolizes%20a%20Chinabased%20APT%20group%20while%20the%20bear%20rugged%20and%20imposing%20embodies%20a%20Ru.jpeg" alt="Pandas, Bears and Threat Actors: Why Red Teaming Goes Beyond CVEs" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;p&gt;Why are there a &lt;strong&gt;panda and a bear&lt;/strong&gt; in our current social media banners?&lt;br&gt;They are not random mascots – they represent &lt;strong&gt;real-world threat actors&lt;/strong&gt; (e.g., China-based APT “Panda” groups and Russian “Bear” groups) that define modern cyber conflict. Each has its own patterns, tools, and attack paths. &lt;strong&gt;To defend effectively, you must understand who might attack you – and how they operate.&lt;/strong&gt;&lt;/p&gt;</description>
      <content:encoded>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/pandas-bears-and-threat-actors-why-red-teaming-goes-beyond-cves?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/AI-Generated%20Media/Images/The%20image%20features%20a%20stylized%20digital%20artwork%20depicting%20a%20panda%20and%20a%20bear%20each%20representing%20different%20cyber%20threat%20actors%20The%20panda%20adorned%20with%20a%20sleek%20modern%20design%20symbolizes%20a%20Chinabased%20APT%20group%20while%20the%20bear%20rugged%20and%20imposing%20embodies%20a%20Ru.jpeg" alt="Pandas, Bears and Threat Actors: Why Red Teaming Goes Beyond CVEs" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;p&gt;Why are there a &lt;strong&gt;panda and a bear&lt;/strong&gt; in our current social media banners?&lt;br&gt;They are not random mascots – they represent &lt;strong&gt;real-world threat actors&lt;/strong&gt; (e.g., China-based APT “Panda” groups and Russian “Bear” groups) that define modern cyber conflict. Each has its own patterns, tools, and attack paths. &lt;strong&gt;To defend effectively, you must understand who might attack you – and how they operate.&lt;/strong&gt;&lt;/p&gt;  
&lt;img src="https://track.hubspot.com/__ptq.gif?a=48715716&amp;amp;k=14&amp;amp;r=https%3A%2F%2Fblog.xplt.com%2Fblog%2Fpandas-bears-and-threat-actors-why-red-teaming-goes-beyond-cves&amp;amp;bu=https%253A%252F%252Fblog.xplt.com%252Fblog&amp;amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "&gt;</content:encoded>
      <pubDate>Wed, 23 Jul 2025 11:29:11 GMT</pubDate>
      <author>johannes@xplt.com (Johannes Schoenborn)</author>
      <guid>https://blog.xplt.com/blog/pandas-bears-and-threat-actors-why-red-teaming-goes-beyond-cves</guid>
      <dc:date>2025-07-23T11:29:11Z</dc:date>
    </item>
    <item>
      <title>We have security solution X, do we even need a pentest?</title>
      <link>https://blog.xplt.com/blog/we-have-security-solution-x-do-we-even-need-a-pentest</link>
      <description>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/we-have-security-solution-x-do-we-even-need-a-pentest?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/cyber_wondering.png" alt="We have security solution X, do we even need a pentest?" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;h1&gt;"&lt;em&gt;We already run Vectra and CrowdStrike — do we still need pentests?&lt;/em&gt;"&lt;/h1&gt; 
&lt;p&gt;This caught me a bit off-guard.&lt;/p&gt;</description>
      <content:encoded>&lt;div class="hs-featured-image-wrapper"&gt; 
 &lt;a href="https://blog.xplt.com/blog/we-have-security-solution-x-do-we-even-need-a-pentest?hsLang=en-us" title="" class="hs-featured-image-link"&gt; &lt;img src="https://blog.xplt.com/hubfs/cyber_wondering.png" alt="We have security solution X, do we even need a pentest?" class="hs-featured-image" style="width:auto !important; max-width:50%; float:left; margin:0 15px 15px 0;"&gt; &lt;/a&gt; 
&lt;/div&gt; 
&lt;h1&gt;"&lt;em&gt;We already run Vectra and CrowdStrike — do we still need pentests?&lt;/em&gt;"&lt;/h1&gt; 
&lt;p&gt;This caught me a bit off-guard.&lt;/p&gt;  
&lt;img src="https://track.hubspot.com/__ptq.gif?a=48715716&amp;amp;k=14&amp;amp;r=https%3A%2F%2Fblog.xplt.com%2Fblog%2Fwe-have-security-solution-x-do-we-even-need-a-pentest&amp;amp;bu=https%253A%252F%252Fblog.xplt.com%252Fblog&amp;amp;bvt=rss" alt="" width="1" height="1" style="min-height:1px!important;width:1px!important;border-width:0!important;margin-top:0!important;margin-bottom:0!important;margin-right:0!important;margin-left:0!important;padding-top:0!important;padding-bottom:0!important;padding-right:0!important;padding-left:0!important; "&gt;</content:encoded>
      <category>cybersecurity</category>
      <pubDate>Fri, 20 Jun 2025 18:08:01 GMT</pubDate>
      <author>johannes@xplt.com (Johannes Schoenborn)</author>
      <guid>https://blog.xplt.com/blog/we-have-security-solution-x-do-we-even-need-a-pentest</guid>
      <dc:date>2025-06-20T18:08:01Z</dc:date>
    </item>
  </channel>
</rss>
