Why Simulating an Insider Attack Is Important??
The importance of assessing an organization’s vulnerability to attack from the inside is virtually self-evident. With the exception of the
Read moresecurity
Defending Against Social Engineering Attacks
Hardening your environment to withstand SEAs, especially targeted ones, is more a matter of training than a traditional security control.
Read morePreparing Yourself for Face-to-Face Attacks
It’s one thing to send an e-mail to or chat with someone online during a SEA, but it’s quite another
Read moreConducting a Social Engineering Attack
It is important to discuss with your client your intention to conduct social engineering attacks, whether internal or external, before
Read moreOrganization for Internet Safety (OIS)
There are three basic types of vulnerability disclosures: full disclosure, partial disclosure, and nondisclosure. Each type has its advocates, and
Read moreSecurely Protect Yourself Against Cyber Trespass Act (SPY Act)
The Securely Protect Yourself Against Cyber Trespass (SPY Act) was passed by the House of Representatives, but never voted on
Read moreCyber Security Enhancement Act of 2002
Several years ago, Congress determined that the legal system still allowed for too much leeway for certain types of computer
Read moreRecognizing the Gray Areas in Security
Since technology can be used by the good and bad guys, there is always a fine line that separates the
Read moreWhat is Cryptography?
Look at the following two pieces of text: The text on the left side is a secret message. The message
Read moreExternal Data Is at Risk, Too
Even the strongest safe deposit box can be opened with the right key. Your valuables might be safe in the
Read more