CompTIA's latest version of its cloud services and web apps PenTest+ now places more emphasis on vulnerability hunting in cloud and hybrid network environments and web applications.
Said the cyberspace operations principal at SAIC: "Operators have information overload, which leads to decision paralysis. If I'm going to deliver a tool or a data feed or visualization to an end user, I'm going to deliver what they need to see. We’re reducing noise.”
CISA said the departments of Homeland Security, Labor and Interior will be the first federal agencies to participate in a program that will allow outside security researchers to legally test selected federal systems for security weaknesses.
Preventing breaches begins with understanding and protecting your attack surface. For most enterprises, their attack surface is huge. To help wrangle it, security professionals have struggled for years to use tools such as network mapper (nmap) or vulnerability scanners to discover and test the security of internet-exposed assets; these typically present a path of least […]
Today’s columnist, Mark Wilson of BMC Mainframe Services, writes about how the pandemic has finally shifted the culture and remote pen tests on mainframes are now acceptable.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.