Skip to content

CovertSwarm Gains Further Accreditation with CREST STAR

CovertSwarm is modernising the penetration testing, red teaming, and bug bounty industries with its challenger ‘Constant Cyber Attack’ service. Today, they announce another achievement in what continues to be a successful year: CovertSwarm is now accredited to provide penetration testing services under the CREST Simulated Targeted Attack and Response (STAR) scheme.

CREST logo with star accreditation

12th AUGUST 2021 – London, UK – CovertSwarm, a provider of Constant Cyber Attack services that close the Cyber Risk Gap resulting from traditional offensive security approaches, today announced CREST STAR Penetration Testing accreditation.

CREST developed the STAR framework to deliver controlled, bespoke, intelligence-led cyber security testing. STAR incorporates advanced penetration testing and threat intelligence services to replicate cyber security threats more accurately to critical assets.

Anders Reeves, CEO and Founder of CovertSwarm, commented “Only a handful of Penetration Testing and Red Team providers have achieved this accreditation and for us to gain it within 18 months of our company’s foundation is a testament to the outstanding team we have. This accreditation cements our Constant Cyber Attack proposition and the challenger approach we take. Point-in-time testing is no longer enough.”

CovertSwarm focuses on closing the cyber risk gap left behind by traditional offensive security approaches. It solves a key problem which all modern businesses face: keeping pace with the constant rate of technology change and continuous release cycles required to remain competitive.

“We congratulate CovertSwarm on gaining the CREST STAR Penetration Testing accreditation, following a rigorous assessment of its business processes, systems, data security and red team methodologies,” said Ian Glover President of CREST. “The addition of CovertSwarm’s STAR accreditation further demonstrates its robust and independently validated approach to increasing its client’s ability to keep pace with technology change and mitigating the associated cyber threats.”

CovertSwarm’s innovative cyber service addresses the problems that so many businesses face with their ‘point in time’, often tick-box penetration testing and red teaming approaches: organisations are moving faster than ever before and releasing software, policy, and infrastructure changes at a rate that legacy ‘snapshot’ cyber testing simply cannot cater for nor keep pace with. The resulting ‘Cyber Risk Gap’ is a concern that CovertSwarm’s clients recognise and seek to mitigate through their consumption of its Constant Cyber Attack service.

About CovertSwarm

The team at CovertSwarm is driven by a single objective – to constantly compromise the security of its clients through the deep detection of blind spots within their cyber defences and technology stacks before real threat actors can exploit them.

Our continuous client-focused cyber intelligence gathering, simulated attack, clear vulnerability reporting, live ethical hacker interaction capability and follow-up education services challenge the status quo of a cyber market in desperate need of modernisation.

Organisations seeking higher degrees of cyber assurance and security confidence than those offered by ‘snapshot’ penetration testing and red team engagements are increasingly partnering with us. They agree that ‘point in time’ testing is no longer enough to secure their organisations, and it is through this shared ethos that CovertSwarm challenges everything that has so far been ‘standard’ in today’s cyber vendor market.


CREST is a not-for-profit accreditation and certification body representing the technical information security industry. CREST provides internationally recognised accreditations for organisations providing technical security services and professional level certifications for individuals providing vulnerability assessment, penetration testing, cyber incident response, threat intelligence and security operations centre (SOC) services. CREST Member companies undergo regular and stringent assessment, whilst CREST certified individuals undertake rigorous examinations to demonstrate the highest levels of knowledge, skill and competence. To ensure currency of knowledge in fast changing technical security environments the certification process is repeated every three years.