category:

Penetration Testing

Article Penetration Testing

Going Beyond Pen Testing to Identify Zero Day Exploits

If you have merchants accepting cardholder data over a VoIP telephone, this can unfortunately expand your organization’s PCI DSS scope. Learn what impact this will have on your PCI compliance program.

Read More about the Going Beyond Pen Testing to Identify Zero Day Exploits
Webinar Online Training

Developing an Effective Security Awareness Training Program

As the threat of data breaches continues to increase, providing your employees with the knowledge they need to implement information security best practices becomes increasingly crucial.

Watch Now about the Developing an Effective Security Awareness Training Program
Article GLBA

GLBA Safeguards Rule: Penetration Testing Requirements

The revised Safeguards Rule specifically states that the testing process must either deploy continuous monitoring of the implemented safeguards, or include annual penetration testing and bi-annual vulnerability scanning.

Read More about the GLBA Safeguards Rule: Penetration Testing Requirements
Article PCI DSS

PCI DSS v4.0: Talk to Your Service Providers about New Requirements

Do you have an established third-party service provider oversight process when it comes to PCI DSS version 4.0 compliance? Learn how to ensure the appropriate due diligence is being performed prior to onboarding a vendor, and annually thereafter.

Read More about the PCI DSS v4.0: Talk to Your Service Providers about New Requirements
Article Ransomware

Ransomware: Because Organizations Aren't Cats

Ransomware attacks are at all-time high. Organizations don’t have nine lives, so here are the top nine vulnerabilities that can lead to ransomware and how to prevent it.

Read More about the Ransomware: Because Organizations Aren't Cats
Article Cybersecurity

9 Blog Posts to Celebrate Cybersecurity Awareness Month

From email to social media and remote working environments, the following nine articles give you the tools you need to stay vigilant, aware, and proactive in the fight against cyber attacks:

Read More about the 9 Blog Posts to Celebrate Cybersecurity Awareness Month
Article Penetration Testing

Scoping for Your Annual Pen Test with Hybrid Work Environments

It's crucial to include remote environments within your annual risk assessment process to ensure that appropriate security controls are put in place to protect your organization and staff against potential exposures and vulnerabilities.

Read More about the Scoping for Your Annual Pen Test with Hybrid Work Environments
Article PCI DSS

PCI DSS v4.0 – Vulnerability Scanning for SAQ A Merchants

Even if your organization is not planning to attest compliance under PCI DSS version 4.0, we recommend that you begin gathering an inventory of all e-commerce websites in use by your merchants, reviewing current configurations, and documenting IP addresses and relevant information about any re-direct servers.

Read More about the PCI DSS v4.0 – Vulnerability Scanning for SAQ A Merchants
Article Penetration Testing

Get the Most Out of Your Pen Test

Predetermining the goals which your organization hopes to achieve with a penetration test as well as the actions you will take to support the test's findings will help you get the most impactful results.

Read More about the Get the Most Out of Your Pen Test