Software Vulnerabilities December 6, 2022

Containers, Security, and Risks within Containerized Environments

4 min read - Applications have historically been deployed and created in a manner reminiscent of classic shopping malls. First, a developer builds the mall, then creates the various stores inside. The stores conform to the dimensions of the mall and operate within its…

Zero Trust September 14, 2022

Old Habits Die Hard: New Report Finds Businesses Still Introducing Security Risk into Cloud Environments

4 min read - While cloud computing and its many forms (private, public, hybrid cloud or multi-cloud environments) have become ubiquitous with innovation and growth over the past decade, cybercriminals have closely watched the migration and introduced innovations of their own to exploit the…

Incident Response January 17, 2022

What It Takes to Build the Blue Team of Tomorrow

5 min read - A good defense takes some testing. Ethical hacking involves pitting two teams together for the sake of strengthening digital security defenses. The red team attempts to bypass digital security barriers. By doing so, they reveal both misconceptions and flaws in…

Application Security November 19, 2021

Penetration Testing for Cloud-Based Apps: A Step-by-Step Guide

4 min read - Although cloud providers offer more and more robust security controls, in the end, you’re the one who has to secure your company’s workloads in the cloud. According to the 2019 Cloud Security Report, the top cloud security challenges are data…

Software Vulnerabilities November 16, 2021

Call to Patch: Zero Day Discovered in Enterprise Help Desk Platform

4 min read - In an age where organizations have established a direct dependence on software to run critical business operations, it’s fundamental that they are evaluating their software development lifecycles and that of their extended environment — third-party partners — against the same…

Intelligence & Analytics November 10, 2021

Breach and Attack Simulation: Hack Yourself to a More Secure Future

4 min read - Getting breached is the surest way to learn your organization’s cybersecurity vulnerabilities. And that’s why you need to hack yourself before threat actors do. A cyber breach and attack simulation, also called red teaming, is best to understand vulnerabilities in…

Intelligence & Analytics October 15, 2021

When Is an Attack not an Attack? The Story of Red Team Versus Blue Team

6 min read - Cybersecurity experts fill our days with terminology from warfare, including jargon such as red team versus blue team. The concept of ‘red team’ has its origin in wargaming. The red team plays an opposing force and attempts to bypass the…

Cloud Security September 21, 2021

12 Benefits of Hiring a Certified Ethical Hacker

4 min read - You’ve probably heard the phrase “you don’t know what you don’t know”. It’s a stage of learning most people find themselves in at one time or another. When it comes to cybersecurity, hackers succeed by finding the security gaps and…

Zero Trust September 15, 2021

X-Force Report: No Shortage of Resources Aimed at Hacking Cloud Environments

4 min read - As cybercriminals remain steadfast in their pursuit of unsuspecting ways to infiltrate today’s businesses, a new report by IBM Security X-Force highlights the top tactics of cybercriminals, the open doors users are leaving for them and the burgeoning marketplace for…

News July 5, 2021

Amateur Critical Infrastructure Attacks Growing in Frequency, Relative Severity

3 min read - Low-sophistication operational technology (OT) attacks grew in frequency and relative severity over the previous few years, according to Mandiant. In doing so, they broadened the type of threat against which companies and governments need to defend their OT assets. Attackers…