Tag: Penetration Testing

According to a new U.K.-based study, 100 percent of test spear phishing attacks gained access to sensitive university data in less than two hours.

Healthcare security is going to play a huge role if the utopian vision of a purely digital healthcare ecosystem is going to be realized.

Chris Thomas, X-Force Red's blockchain security expert, has always had an interest in understanding how technologies are built and operated.

Vendors, cybersecurity professionals and marketing teams often use the terms "penetration testing" and "vulnerability assessment" interchangeably, mixing two completely different security engagements.

If a safe, secure product and a satisfied customer base is the pot of gold at the end of your rainbow, it's time to build application security processes into your development cycle.

The decentralized nature of blockchain, coupled with consensus protocols, helps to address some security needs, but the consequences can be dire if security isn't fully explored.

Security researchers discovered that a threat actor is targeting LinkedIn users with fake job offers to deliver the More_eggs backdoor.

X-Force Red believes vulnerabilities should be ranked based on the importance of the exposed asset and whether the vulnerability is being weaponized by criminals, not necessarily its CVSS score.

While many CISOs are tempted to invest in as many new technologies as they can find to fight emerging threats, less is more when it comes to minimizing cybersecurity complexity.

By completing the phases of the system development life cycle (SDLC), security teams can integrate processes and technologies into the development process and improve application security.