by Terry Crowley | Jul 3, 2019 | Penetration Testing
Just because you moved your virtual servers, databases and/or applications to the public cloud doesn’t mean they are somehow now magically secure. You still need penetration testing to verify your cloud environment is secure and to uncover any potential risks. Full... by Terry Crowley | Jun 24, 2019 | Penetration Testing
Penetration testing seeks to evaluate your security posture using simulated attacks to identify and exploit vulnerabilities. Most pen testing is done by experts using manual techniques supported by automated tools. In any penetration testing engagement, one of... by Terry Crowley | Apr 16, 2019 | InfoSec Strategies
There’s a new trend in cybercrime: why go to the trouble of hacking systems when you can exploit compromised login/password credentials to just log right in? Passwords Aren’t “Safe” Research from Verizon and others indicates that over 80% of data... by Terry Crowley | Apr 2, 2019 | InfoSec Strategies
It’s hard to remember a bunch of different passwords, which is why people habitually reuse them—despite the obvious security risks. A recent survey by the password manager vendor LastPass revealed that, while 91% of respondents knew it was risky to reuse passwords,... by Terry Crowley | Nov 27, 2018 | ISMS Consulting
A recent report from tCell that analyzed more than 316 million security incidents shares key data on the most common real-world attacks targeting in-production web applications. One statistic that caught my eye is that it took an average of 38 days for businesses to...
