Security News > 2021 > October > Is offensive testing the way for enterprises to finally be ahead of adversaries?

Is offensive testing the way for enterprises to finally be ahead of adversaries?
2021-10-28 04:00

Technologies introduced practices emerge and yet - adversaries always find new ways.

Because the next morning, hackers will find a new way to install a malware, steal identities or exfiltrate sensitive data.

Information security staff recognize these differences and therefore usually hire a group of "White-hat" hackers, to show them where they are vulnerable.

In May 2021, following some high-profile campaigns against US-based institutions by APT groups, that included ransomware and supply-chain attacks, the administration enacted an executive order that - among many other things - encourages organizations to make use of offensive testing practices to assess their security posture and better manage risk.

Specifically, this is a call for enterprises to test, practice and drill their incident response plans and security controls to better prepare their people, processes, and technologies in case of a cyberattack.

Offensive testing technology, commonly known as Continuous Security Validation, provides information security staff and business executives a baseline of the posture of their current state in order to optimize their readiness for cyberattacks.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/1ra2gDK7CH8/