New proactive cybersecurity solution delivers continuous penetration testing, red team simulation, and threat monitoring to help organizations detect vulnerabilities before attackers do

Pagosa Springs, Colo. — March 5, 2026 — Offensive cybersecurity firm uMercs today announced the launch of Scout RECON, a managed penetration testing service designed to help organizations proactively identify vulnerabilities, strengthen their cybersecurity posture, and defend against increasingly sophisticated cyber threats.

Scout RECON combines quarterly penetration testing, monthly vulnerability scanning, red team–style attack simulation, and proactive cybersecurity advisory services into a continuous security testing program that enables organizations to detect and mitigate threats before they escalate into costly incidents.

The new service is designed to support small and mid-sized businesses, managed service providers (MSPs), managed security service providers (MSSPs), and compliance-driven organizations across the United States, while reinforcing uMercs’ growing role as a cybersecurity leader based in Southwest Colorado.

“As cyberattacks continue to evolve, businesses can no longer rely on a single annual penetration test to stay secure,” said Matt Hosburgh, founder of uMercs. “Scout RECON delivers continuous cybersecurity visibility through proactive penetration testing, vulnerability monitoring, and real-world red team testing. Our goal is simple: identify weaknesses before attackers do and help organizations stay one step ahead.”

Addressing the Growing Need for Proactive Cybersecurity

Cybercrime continues to rise at an alarming rate, with ransomware attacks, credential compromises, and software vulnerabilities threatening organizations of every size. While large enterprises often have dedicated cybersecurity teams and significant budgets, many small and mid-sized organizations lack access to the same level of security expertise.

This growing gap has created a demand for managed cybersecurity services that deliver enterprise-grade protection without enterprise-level costs.

Scout RECON was developed specifically to address that challenge.

Rather than relying on traditional one-time penetration testing engagements, Scout RECON provides a continuous cybersecurity testing framework that helps organizations maintain visibility into their evolving attack surface.

Through regular testing, vulnerability discovery, and expert guidance, businesses can proactively address security risks while strengthening their overall security posture.

“Cybersecurity shouldn’t be reactive,” Hosburgh said. “Organizations need continuous testing, continuous visibility, and actionable insights that help them defend against real-world attacks.”

What Is Scout RECON?

Scout RECON is a managed penetration testing and cybersecurity monitoring program that delivers ongoing offensive security testing designed to simulate real-world cyberattacks.

The service combines automated security analysis with expert cybersecurity oversight to provide a comprehensive understanding of an organization’s vulnerabilities and potential attack paths.

Key features of Scout RECON include:

  • Quarterly Penetration Testing – Real-world offensive security testing designed to simulate attacker behavior and identify exploitable weaknesses in networks, systems, and applications.
  • Monthly Vulnerability Scanning – Continuous monitoring for known vulnerabilities across infrastructure, ensuring organizations stay aware of emerging security risks.
  • Quarterly Cybersecurity Advisory Sessions – Expert guidance to help organizations prioritize remediation efforts and improve their overall security strategy.
  • Dark Web Monitoring – Continuous monitoring for compromised credentials and sensitive data exposure across underground cybercrime marketplaces.

Together, these services help organizations maintain ongoing cybersecurity awareness and reduce the likelihood of successful cyberattacks.

Simulating Real-World Attacks Through Offensive Security Testing

Unlike traditional security assessments that rely solely on automated scanning tools, Scout RECON incorporates offensive cybersecurity techniques used by professional red team operators.

These techniques simulate the tactics, techniques, and procedures used by real-world threat actors to gain access to systems and escalate privileges within networks.

Through controlled attack simulations, uMercs can help organizations answer critical security questions such as:

  • Could an attacker gain access to our systems through publicly exposed vulnerabilities?
  • How far could an attacker move within our network if they gained initial access?
  • Are our security controls capable of detecting and stopping advanced threats?
  • Which vulnerabilities pose the highest risk to our organization?

By identifying these risks early, organizations can take corrective action before malicious actors exploit them.

Supporting Businesses Across Colorado and the Southwest

While uMercs provides cybersecurity services nationwide, the company remains deeply connected to its roots in Southwest Colorado.

Headquartered in Pagosa Springs, uMercs works with organizations across Colorado and the greater Southwest region to strengthen cybersecurity resilience for local businesses, technology companies, and critical infrastructure organizations.

As cyber threats increasingly target smaller organizations and regional businesses, uMercs aims to ensure companies throughout the region have access to the same level of offensive cybersecurity expertise available to large enterprises.

“Businesses in Colorado and across the Southwest face the same cyber threats as companies anywhere else,” Hosburgh said. “Our mission is to make sure organizations in our region have access to world-class cybersecurity testing and expertise.”

Helping Cybersecurity Providers Expand Their Services

Scout RECON also provides an opportunity for MSPs and MSSPs to expand their cybersecurity service offerings.

Many service providers receive requests from clients for penetration testing and advanced cybersecurity assessments but lack the internal offensive security resources required to deliver them.

Through the Scout RECON program, cybersecurity providers can partner with uMercs to offer managed penetration testing services to their clients, enabling them to generate additional revenue while delivering stronger cybersecurity outcomes.

This partnership-driven model allows service providers to expand their security capabilities without the cost and complexity of building an internal red team.

A Growing Demand for Continuous Cybersecurity Testing

The launch of Scout RECON reflects a broader shift in the cybersecurity industry toward continuous security validation.

As organizations adopt cloud infrastructure, hybrid networks, and remote work environments, their attack surfaces expand rapidly. Security teams must constantly adapt to new vulnerabilities and emerging threats.

Continuous penetration testing and proactive cybersecurity monitoring have become essential components of modern security programs.

Scout RECON enables organizations to maintain that level of visibility while ensuring vulnerabilities are discovered and addressed quickly.

Availability

Scout RECON is now available to organizations throughout the United States and can be deployed for businesses of all sizes seeking to strengthen their cybersecurity defenses through proactive penetration testing and red team testing.

About uMercs

uMercs is an offensive cybersecurity company specializing in penetration testing, red team assessments, and proactive threat mitigation services. Founded in 2018 and headquartered in Pagosa Springs, Colorado, uMercs helps organizations across the United States identify vulnerabilities, simulate real-world cyberattacks, and strengthen their security posture.

The company’s turn-key cybersecurity services include managed penetration testing, vulnerability assessments, purple team exercises, and security advisory services designed to help businesses proactively defend against modern cyber threats.

uMercs combines advanced security technology with expert cybersecurity analysis to deliver enterprise-grade protection for organizations of all sizes.

For more information, visit www.umercs.com.

Media Contact:
uMercs
press@umercs.com
www.umercs.com