Last month, PayPal was hit by a credential stuffing attack, a type of cyber-attack where hackers use lists of stolen login credentials, typically obtained from data breaches or other sources, to gain access to user accounts on various platforms. The attack occurred between December 6 and December 8, and the company was able to detect… Read More »Lessons from PayPal’s Credential Stuffing Attack That Affected 35K Users
Red teaming is a valuable tool for organizations looking to improve their security posture and identify potential vulnerabilities in their systems and processes. The concept is simple: try to act like your enemy – simulate real-world attacks and test an organization’s defences and provide a detailed assessment of the organization’s security strengths and weaknesses.However, traditional… Read More »Does Your Organization Need Red Team Automation?
Every CISO wants to understand how a security solution will move the overall security needle in the “greater scheme of things”. Although everyone understands that solving specific issues (like malware, user errors, unmanaged assets, unpatched vulnerabilities, mis-deployed controls or remote access etc.) are important, they also want to see the bigger picture – they want… Read More »How To Evaluate An Attack Surface Management Tool – The Bigger Picture.
Can your security team confidently answer the following questions? Which vulnerabilities have the greatest chance of being exploited by an adversary? What are your action points to identify the unknown risks and vulnerabilities in our environment? Which infrastructure changes or digital transformation initiatives in the last 7 days have altered your threat landscape or security… Read More »Gartner’s Hype Cycle For Automated Penetration Test & Red Teaming
Organizations have to manage a growing attack surface as their technological environments become increasingly complex and dispersed. However, most organizations lack the capability to validate control coverage and quantify digital and cyber risks effectively. According to this Gartner Report on Attack Surface Management, security and risk management leaders responsible for managing their organization’s attack surface as… Read More »Gartner Features FireCompass In Innovation Insight For Attack Surface Management