Successful mitigation of today’s security threats requires an approach that is both on the offensive and on the defensive. Here, we give our take on how to approach and handle specific security challenges, as well as our reaction to some of the latest industry topics.
05.13.21The Colonial Pipeline shutdown should be seen as a serious incident pointing to the precariousness of critical infrastructure security.
05.11.21How DirectDefense leveraged the pandemic to exploit remote access security for a large corporate network through an email phishing campaign While most of the world was busy adapting to the Work from Anywhere #WFA movement that the pandemic suddenly brought on, a certain segment of the population saw a unique opportunity to get into an… Read more »
05.10.21When it comes to email security, did you know your out-of-office autoresponder could be making your organization more vulnerable to attack?
04.29.21How a recent DirectDefense security assessment revealed a common application vulnerability through commandeering access controls.
03.23.21Take two of our team attempting to conduct a data breach at a company that previously let us in as landscaping job candidates. How’d it go this year?
02.16.21Our information security and managed security services firm found vulnerabilities in our client’s web application security.
02.09.21If you don’t want to issue the dreaded boil-water advisory then make sure your wireless network is hacker-proof. How our team was able to drive up to a municipal water utility, join the wireless SCADA network and gain the access needed to do some major damage to the water supply – all in 10 minutes… Read more »
01.12.21Keep Your Organization Safe Around the Clock with a Cybersecurity Operations Center from an MSSP Here’s a projection that’s hard to ignore: the cost of cybercrime is expected to exceed $8 billion by 2022. The reality of that amount of financial fallout from cyber attacks is staggering. Driving up the cost of cybercrime is the… Read more »
12.16.20Part 1: Get Inside the Heads of the DirectDefense Team as We Launched an Attack on a Client’s System to Bypass Passwords and Gain Access to “Protected” Critical Data This post is the first in a 2-part series addressing the need for strong passwords across all industries to adequately protect important company and user data.… Read more »
12.16.20Part 2: Get Rid of Weak Passwords like Winter2020 and Password1 Our Attack into One Company’s Database Highlights the Risk of Poor Passwords This post is the second in our 2-part series addressing the need for strong passwords across all industries to adequately protect critical information. In a recent client engagement, we set out to… Read more »
