Recently, the U.S. Cybersecurity and Infrastructure Agency (CISA) published a report on their security observations on Office 365. In it, they detail some configuration vulnerabilities….
Why you Need an ERP CYbersecurity Strategy Today’s powerful ERP systems are at the center of a company. That makes them the perfect, high-value target…
It is a common misconception that installing a firewall and having anti-virus on PCs and servers keeps businesses safe from malware, ransomware, and data breaches….
Network defense has traditionally focused on vulnerability management. However, as network and endpoint defenses improve, attackers increasingly target user credentials. When I first started learning…
Vulnerability scanning is an automated process that involves using various tools to: Look at which ports are open on a system; Investigate the service running…
Azure Site Recovery might be your affordable answer. Azure Site Recovery (ASR) can be used to replicate your on-premises or even other cloud-based servers to…
Ideally, you would have more insight into vulnerabilities and potential means of exploitation in your environment than your adversaries (i.e., attackers) would. Performing credentialed scanning…
Over the past few months, Microsoft has changed its stance on password recommendations. Microsoft now recommends that passwords are not ever set to expire automatically….
Security within the Cloud needs to be taken seriously. In fact now, more than ever, hackers are finding and exploiting information from organizations large and…
Is your first penetration test around the corner? Active Directory is a prime target for internal pentests and is commonly misconfigured. The intent of this…
Remote access software is deployed by countless organizations across a variety of industries. As a practical method to manage environments without being physically present, it…
Would you be able to detect an attacker running PowerShell on your network? As penetration testers, it’s rarer than you might think for our PowerShell…
