Expertise
-
7 Types of Penetration Testing: Guide to Pentest Methods & Types
Penetration tests are vital components of vulnerability management programs. In these tests, white hat hackers try to find and exploit vulnerabilities in your systems to help you stay one step…
-
How to Implement a Penetration Testing Program in 10 Steps
Penetration tests find security vulnerabilities before hackers do and are critical for keeping organizations safe from cyber threats. You can either create your own pentesting program or hire an outside…
-
What is Virtual Patching and How Does It Work?
Virtual patching uses policies, rules and security tools to block access to a vulnerability until it can be patched. Zero-day threats and legacy systems are two ways that vulnerabilities can…
-
What is Vulnerability Scanning & How Does It Work?
Vulnerability scanning is the process of scanning IT networks and systems to identify security vulnerabilities in hardware and software. As enterprise IT environments have grown more complex, the ways hackers…
-
Penetration Testing Phases & Steps Explained
Organizations use penetration testing to strengthen their security. During these tests, simulated attacks are executed to identify gaps and vulnerabilities in the IT environment. But before hiring penetration testers or…
-
The Challenges Facing the Passwordless Future
For years the tech industry has promised a shift toward a passwordless future. In 2013, for example, the FIDO Alliance was created to solve the world’s password problem by replacing…
-
Ransomware Groups Turn to Intermittent Encryption to Speed Attack Times
During a cyberattack, time is of the essence for both attackers and defenders. To accelerate the ransomware encryption process and make it harder to detect, cybercriminal groups have begun using…
-
Zero Trust Speeds Ransomware Response, Illumio-Bishop Fox Test Finds
From mass production of cheap malware to ransomware as a service (RaaS), cyber criminals have industrialized cybercrime, and a new HP Wolf Security report warns that cybercriminals are adapting advanced…
-
Cybersecurity Training and Tech Aren’t Enough; ‘Culture Change’ Needed
Companies spend a staggering amount of money on cybersecurity products to defend their networks and data from hackers, but a couple of industry pros say that money is wasted if…
-
Exfiltration Can Be Stopped With Data-in-Use Encryption, Company Says
Even the most advanced and sophisticated security tools are failing to protect against ransomware and data exfiltration, according to a new report from data encryption vendor Titaniam. The State of…
