fbpx

penetration testing

NCA’s Operation Morpheus targets illicit Cobalt Strike use

The UK’s National Crime Agency (NCA), together with partner agencies from around the world, including the FBI and agencies from Australia, Canada and the European Union, has undertaken a series of enforcement actions against users of the Cobalt Strike penetration testing tool who were exploiting it to enable cyber criminal activity. Operation Morpheus took action…

NCA’s Operation Morpheus targets illicit Cobalt Strike use Read More »

How to ensure public cloud services are used safely and securely

By Published: 12 Jun 2024 The public cloud is a cloud computing model that enables resources such as applications, data storage, and virtual machines to be accessed remotely and on demand. While largely a benefit, it also leaves organisations open to public cloud security risks, particularly when they allow users to access on-demand services from…

How to ensure public cloud services are used safely and securely Read More »

EMEA security spend will have another boom year in 2024

Security services and technology have again maintained the number one priority for IT spending across the EMEA region, according to this year’s Technology spending intentions research from TechTarget and ESG, to the extent that it’s also leading investment in areas beyond merely cyber, including networking, infrastructure, applications (DevSecOps) and generative artificial intelligence (GenAI). With 48%…

EMEA security spend will have another boom year in 2024 Read More »

MoD ethical hacking programme expands after initial success

The Ministry of Defence (MoD) has revealed it has expanded an existing defensive security initiative with ethical hacking and penetration testing specialist HackerOne to include some of its key suppliers. The original scope of the MoD’s defensive security programme included a vulnerability disclosure programme (VDP) paying out bug bounties through HackerOne, leveraging the creativity and…

MoD ethical hacking programme expands after initial success Read More »

Admins told to take action over F5 Big-IP platform flaws

Two recently discovered vulnerabilities in the F5 Networks Big-IP application delivery and security platform are now being chained and exploited by threat actors, putting thousands of the popular product family’s users at risk. The platform was first introduced in 1997 and has since expanded to comprise a range of networking and security services covering areas…

Admins told to take action over F5 Big-IP platform flaws Read More »

DORA: Moving into a new era of digital resilience

Operational resilience is the discipline that is taking organisations beyond an internally-focused business continuity or information technology disaster recovery (ITDR) programme to look at the wider impact of disruption to services through an external-facing lens. Properly defined, operational resilience is the “ability of firms, [financial] market infrastructures, and the [financial] sector as a whole to…

DORA: Moving into a new era of digital resilience Read More »

Scroll to Top