Penetration Testing

Europe Sharpens IT Incident Reporting Requirements, Puts Cloud SLAs Under Microscope

A sprawling Digital Finance Package, adopted by the European Commission this week, includes proposals for a new Europe-wide Digital Operational…

A Needle in a Hash Stack: Why It’s Time to Move Beyond Threat Intelligence

Many of us read the recent news stories and advisories about APT29 (a.k.a. Cozy Bear)’s targeted assault on COVID-19 vaccine developers…

Police Warning: Cyber Criminals Are Using Cleaners to Hack Your Business

Criminal gangs are planting “sleepers” in cleaning companies so that they can physically access IT infrastructure, a senior police officer…

Hacker Favourite Kali Linux Swaps Gnome for Xfce, Adds New Tricks

Kali Linux (a Linux distribution used primarily for penetration testing, network security assessments and other security explorations by hackers of…

Penetration Testing: “Think Evil” (But Get that Scope Crystal Clear)

Many CISOs swear by penetration testing – simulated attacks on an organisation's infrastructure (typically cyber infrastructure, but physical security tests…

Government: We’re Mulling Broader Pen Testing for CNI

The government has defended its decision not to provide an itemised breakdown of how it is spending £1.9 billion under…

Lessons from Six Years of Red Teaming

CIOs and CSOs are increasingly turning to Red Teaming to assess their organisations’ cyber resilience. A red team exercise is…

TfL: Calling all White Hats

Transport for London (TfL), the local government body responsible for billions of journeys annually across London, is seeking a partner…

Company123! Lessons from a Year of Penetration Testing (2FA, Anyone?)

Penetration testing professionals were able to find exploitable weaknesses in businesses networks in a shocking 84 percent of engagements, analysis…

UK Far Outstrips US in Penetration Tests

While 56 percent of UK companies have hired an outside organisation to undertake penetration tests to judge the security of…