Intelligence & Analytics March 30, 2023

And Stay Out! Blocking Backdoor Break-Ins

4 min read - Backdoor access was the most common threat vector in 2022. According to the 2023 IBM Security X-Force Threat Intelligence Index, 21% of incidents saw the use of backdoors, outpacing perennial compromise favorite ransomware, which came in at just 17%. The…

Incident Response March 9, 2023

What is a Red Teamer? All You Need to Know

4 min read - A red teamer is a cybersecurity professional that works to help companies improve IT security frameworks by attacking and undermining those same frameworks, often without notice. The term “red teaming” is often used interchangeably with penetration testing. While the terms…

Data Protection February 9, 2023

What is a Pentester, and Can They Prevent Data Breaches?

3 min read - With the cost of data breaches at an all-time high, organizations are working to proactively identify areas of risk on the network. Using pentesters to conduct penetration (pen) testing is becoming more common. To protect themselves, businesses must know their…

Software Vulnerabilities December 6, 2022

Containers, Security, and Risks within Containerized Environments

4 min read - Applications have historically been deployed and created in a manner reminiscent of classic shopping malls. First, a developer builds the mall, then creates the various stores inside. The stores conform to the dimensions of the mall and operate within its…

Zero Trust September 14, 2022

Old Habits Die Hard: New Report Finds Businesses Still Introducing Security Risk into Cloud Environments

4 min read - While cloud computing and its many forms (private, public, hybrid cloud or multi-cloud environments) have become ubiquitous with innovation and growth over the past decade, cybercriminals have closely watched the migration and introduced innovations of their own to exploit the…

Incident Response January 17, 2022

What It Takes to Build the Blue Team of Tomorrow

5 min read - A good defense takes some testing. Ethical hacking involves pitting two teams together for the sake of strengthening digital security defenses. The red team attempts to bypass digital security barriers. By doing so, they reveal both misconceptions and flaws in…

Application Security November 19, 2021

Penetration Testing for Cloud-Based Apps: A Step-by-Step Guide

4 min read - Although cloud providers offer more and more robust security controls, in the end, you’re the one who has to secure your company’s workloads in the cloud. According to the 2019 Cloud Security Report, the top cloud security challenges are data…

Software Vulnerabilities November 16, 2021

Call to Patch: Zero Day Discovered in Enterprise Help Desk Platform

4 min read - In an age where organizations have established a direct dependence on software to run critical business operations, it’s fundamental that they are evaluating their software development lifecycles and that of their extended environment — third-party partners — against the same…

Intelligence & Analytics November 10, 2021

Breach and Attack Simulation: Hack Yourself to a More Secure Future

4 min read - Getting breached is the surest way to learn your organization’s cybersecurity vulnerabilities. And that’s why you need to hack yourself before threat actors do. A cyber breach and attack simulation, also called red teaming, is best to understand vulnerabilities in…

Intelligence & Analytics October 15, 2021

When Is an Attack not an Attack? The Story of Red Team Versus Blue Team

6 min read - Cybersecurity experts fill our days with terminology from warfare, including jargon such as red team versus blue team. The concept of ‘red team’ has its origin in wargaming. The red team plays an opposing force and attempts to bypass the…