News
16 July 2025
Case Study: How a Phishing Attack Tricked 40% of Employees
In a simulated attack, our ethical hackers tricked nearly 40% of employees through phishing and vishing. One click gave us access to the network—proving that even strong tech can’t compensate for human error. Here’s what we learned and why awareness is your best defense.
24 April 2025
Ethical Hacking Report 2024: Six Vulnerabilities in Almost Every Tested System
Web, cloud, mobile, and infrastructure projects all revealed the same pattern: overlooked basics, repeat mistakes, and too many systems left wide open.
26 March 2024
Jakub Novák on How Citadelo Helped Shape Cybersecurity in CEE
With over 8 years of experience at Citadelo, Jakub Novák shares how offensive security has evolved in the Czech and Slovak markets. From the rise of regulations like NIS2 and DORA to the continued dominance of phishing attacks, he outlines what every CISO needs to know.
11 March 2024
Ethical Hacking Report 2023: Web, Cloud, and Infrastructure Top the Risk Chart
Citadelo’s Ethical Hacking Report 2023 reveals 2,795 vulnerabilities found in 384 simulated attacks. Web, Cloud, and Infrastructure remain the most exposed areas — highlighting the urgent need for proactive security testing to close critical gaps.
1 March 2024
CVE Alert: Python API Library Allowed Remote Code Execution
A small configuration slip. A rarely used content type. One well-placed payload — and your Python app is under someone else’s control. This CVE proves it.
20 February 2024
Penetration test quality vs. recruitment quality?
What does it mean that in Citadelo a hacker is hiring a hacker? Interview with our HR Manager Dita. Find more about hacker recruitment at Citadelo and how it affects the quality of the team and therefore the quality of the pentests.
Sign up for our newsletter for all the important cybersecurity and ethical hacking news.
© 2024 citadelo AG. All rights reserved.
