Cyber Security Articles & News

User Deception: The Biggest Cyber Threat CISOs are Forgetting

As a CISO, you're always looking for the next big breakthrough to increase your organization's overall security posture. 

Next-generation firewalls (NGFW), intrusion prevention systems (IPS), and sophisticated anti-virus software are great, but the answer to strong cybersecurity starts with your weakest link: your employees. 

In fact, untrained employees are far more likely to lead to a breach than DDoS attacks or any other hacking technique. 

Defining the Framework for a Successful Pentest Attack

While there are different types of pentests, with every pen test consisting of four main phases— planning, pre-attack, attack, and post-attack— few realize the extent of work that goes into the pre-attack phase. Just as even the best-built house will crumble without a solid foundation, penetration testers must do their due diligence in the beginning to sell successful exploits. 

The Top 5 Most Famous Social Engineering Attacks of the Last Decade

There’s something both humbling and terrifying about watching industry giants like Twitter and Target fall victim to cyber attacks.

4 Ways to Combine Education & Entertainment at Your Next Corporate Event

Imagine two types of events: the company Christmas party and the quarterly mandated security awareness training. 

We can guess which one you are looking forward to the most. We have all attended our fair share of impersonal or unexciting corporate events. But while teaching employees about cyber threats is crucial in maintaining a healthy security posture, keeping employees' attention during these events can be challenging. 

Many companies seem to struggle when blending the enjoyment of a get-together, such as a celebration, with the educational aspect of a training or company meeting.

Spear Phishing & Targeted Email Scams: What You Need to Know About this Hacking Technique

Most companies tell their employees to be on the lookout for email scams, yet not all take the time to educate their team on what these malicious messages look like.

An Overview of the 2020 UHS Ransomware Attack

This past weekend, the Fortune 500 hospital and healthcare services provider Universal Health Services (UHS) fell victim to an immobilizing ransomware attack.

What is Penetration Testing?

A penetration test is a simulated cyber attack against your nonmalicious computer system to check for exploitable vulnerabilities. It’s a series of targeted nonmalicious attacks, intended to breach your cybersecurity defenses. The difference between a pentest and a real attack, however, is that penetration tests are conducted by ethical security professionals, who keep any extracted data private and ultimately help you improve your security posture. 

Penetration Testing Service Considerations for Multinational Enterprise Corporations

Multinational corporations face unique challenges when considering the best approach to penetration testing. 

4 Considerations Before Choosing the Right Type of Pentesting Company

Performing a penetration test against your organization’s network is an excellent way to assess its overall security posture and locate potential holes in the network.