Cyber Security in the 21st Century: Penetration Testing FAQs

Penetration Testing FAQs

You’ve heard about penetration testing, but you’re not sure what to ask or where to start. Here are some of the questions you should ask, and the answers you should get from a testing company. What Is A Penetration test? Logical question. But, not too many people ask this one. You should. A pen test […]

Internet Explorer End-of-Life Security Tips

Internet Explorer End-of-Life Security Tips

Security experts offer cyber security advice for Internet Explorer 8, 9 and 10 users Beginning on Tuesday, January 12, 2016, Microsoft will no longer support Internet Explorer (IE) 8, 9 and 10. Users of IE 11 will continue to receive technical support and security updates, leaving users of legacy versions of IE more vulnerable to […]

Government Crackdown on Nuisance Calls to make Marketing Companies Display Caller ID

Nuisance Calls to make Marketing Companies Display Caller ID

Direct marketing companies will have to legally display their telephone number on caller ID Consumers will find it easier to report unsolicited calls to the regulators Around one in five marketing calls fail to display valid number Direct marketing companies will have to display their telephone numbers under plans Government has set out in the […]

Malicious Email Campaign that Drops Ursnif

Malicious Email Campaign that Drops Ursnif

The attack permits the malware to jump onto computers in a unique manner, using the ‘Range’ HTTPS header. The Ursnif malware is retrieved from the command and control server when the malware requests the file, but should a user browse to that location they see this JPG of the kangaroo below. The email uses a macro-laden […]

Opens API to Test SSL/TLS Security for PCI DSS Requirements and NIST Guidelines

Opens API to Test SSL/TLS Security

High-Tech Bridge, a leading provider of  web application security, has opened a free to use API for the company’s SSL security testing service, which verifies the security and reliability of SSL/TLS implementation on any website or web app according to PCI DSS requirements, NIST guidelines and industry best-practices. The free  SSL/TLS security testing service was launched […]

Vulnerabilities Exposed by Hacking Group W0rm

Vulnerabilities Exposed by Hacking Group W0rm

Not sure if you’ve seen, but cloud software company Citrix has been hacked by an organisation called w0rm which exposed vulnerabilities in its network, allegedly for ‘altruistic’ reasons to raise standards of cybersecurity. Tony Pepper, CEO, Egress Software Technologies said why companies need to protect all customer data, especially in the face of new penalties […]