Security News
While crowdsourced security has evolved as an alternative to penetration testing in the past 10 years, it's not based on automation but simply throwing more humans at a problem. Tools that can be used to automate penetration testing under certain conditions have surfaced - but can they replace human penetration testers?
From web app flaws to a lack of 2FA, Rapid7 found lots of common soft targets in the networks it breached on behalf of clients.
SecOps firm Rapid7 has released its annual look at the state of the penetration testing industry, with findings including a significant spike in the number of vulnerable VPN connections, widespread lack of multifactor authentication, and a high volume of poorly configured internal networks making it easier for attackers to move laterally once inside. Passwords are supposed to be kept secret, the report states, but "Humans and their woefully unoriginal meat brains" make guessing those passwords far easier than can be considered safe.
Offensive Security announced a major update to its flagship Penetration Testing with Kali Linux training course. The new course doubles the amount of content available to train students the skills and mindset required to be a successful security professional and prepare for the Offensive Security Certified Professional certification.
Israeli cybersecurity firm Pcysys announced on Wednesday that it has completed a $10 million Series A funding round, which brings the total raised by the company to $15 million. read more
Riptide Software’s new penetration testing suite has been released. The continued growth of managed IT services has allowed Riptide to offer new cybersecurity services, such as penetration...
Here’s an overview of some of last week’s most interesting news and articles: Why vaporworms might be the scourge of 2019 Not too long ago, the WatchGuard Threat Lab predicted the emergence of...
Secure Decisions, a division of Applied Visions, Inc. and a leader in cyber security research, has developed a new application security testing technology, the Attack Surface Detector, that...
We live in an age where data flows like water, becoming the new life source of our everyday ventures. As such, you can just imagine what all of that entails and the weight that data receive,...
Outpost24's Bob Egner Talks Application Security, Agile Development, SecDevOpsAs organizations move more data into the cloud, too many are treating security as an afterthought, says Outpost24's...