Explore our blog

Here’s where we keep you up to date with the latest cyber security research, vulnerabilities, threats and solutions.

Vulnerability Assessment vs. Penetration Testing

Vulnerability Assessment vs. Penetration Testing

Every few weeks, someone asks us to run a quick pentest. What they actually need is a vulnerability assessment. Or the other way around. It's not a semantics problem. The two exercises answer different questions. They use different methods. They produce different...

read more
Case Study: Physical Red Team Engagement

Case Study: Physical Red Team Engagement

Most security budgets go toward firewalls, endpoint agents, and patch cycles. Then someone walks through the front door, says the right words to the right person, and ends up sitting at an employee workstation. No exploit. No malware. No stolen credentials. Just a...

read more
Case Study: Microsoft Custom Add-In Security Assessment

Case Study: Microsoft Custom Add-In Security Assessment

The era of cracked games taught us something: licensing was never just about payments. It was always about security. Working from a single trial account, the Zerotak team activated full enterprise functionality on a Microsoft Office Add-in without touching...

read more
Case Study: Helpdesk Social Engineering

Case Study: Helpdesk Social Engineering

A SaaS platform with proper authentication, MFA enforced, and monitored infrastructure. None of it mattered. The technical team at Zerotak took over a user account without touching a single piece of software. We registered an email that looked almost identical to the...

read more
Case Study: Training for Law Enforcement

Case Study: Training for Law Enforcement

Most cybercrime investigations do not start with a confession or a witness. They start with a fragment: a wallet address, a screenshot, a timestamp that may or may not be real, an IP that belonged to someone for forty minutes. The gap between that fragment and a named...

read more
Case Study: AI Penetration Testing

Case Study: AI Penetration Testing

Your application passed the web pentest. Your infrastructure is patched. But you added an AI assistant to your platform six months ago, and nobody has tested it. That is the gap most security teams are not thinking about yet. In a recent engagement, Zerotak assessed...

read more

Ready to get started?

Get in touch with one of our experts today to discuss your business needs.