Why Simulating an Insider Attack Is Important??
The importance of assessing an organization’s vulnerability to attack from the inside is virtually self-evident. With the exception of the
Read moreIT Security
IT Security
Defending Against Physical Penetrations
You might assume that protecting a company’s informational assets from a physical intrusion is covered under its existing security measures,
Read moreWhy a Physical Penetration Is Important
Anyone who has taken an information security class in the past ten years has probably heard the “crunchy on the
Read moreDefending Against Social Engineering Attacks
Hardening your environment to withstand SEAs, especially targeted ones, is more a matter of training than a traditional security control.
Read morePreparing Yourself for Face-to-Face Attacks
It’s one thing to send an e-mail to or chat with someone online during a SEA, but it’s quite another
Read moreConducting a Social Engineering Attack
It is important to discuss with your client your intention to conduct social engineering attacks, whether internal or external, before
Read moreHow a Social Engineering Attack Works
Social engineering attacks cover a wide range of activities. Phishing, for instance, is a social engineering attack (SEA). The victim
Read moreOrganization for Internet Safety (OIS)
There are three basic types of vulnerability disclosures: full disclosure, partial disclosure, and nondisclosure. Each type has its advocates, and
Read moreSecurely Protect Yourself Against Cyber Trespass Act (SPY Act)
The Securely Protect Yourself Against Cyber Trespass (SPY Act) was passed by the House of Representatives, but never voted on
Read moreCyber Security Enhancement Act of 2002
Several years ago, Congress determined that the legal system still allowed for too much leeway for certain types of computer
Read more