Articles

TSA Cybersecurity Regulations for Pipeline Owners & Operators

Following the Colonial Pipeline ransomware attack, the TSA has implemented cybersecurity regulations for pipeline owners and operators.

Remote and Onsite Social Engineering Testing for Your Organization

Both remote and onsite social engineering testing are crucial components of a robust security program. Here's what you need to know.

Revolutionizing Authentication and Overcoming Password Vulnerabilities

The widespread reliance on passwords has long been a significant security concern for individuals and organizations. Passkeys are helping to solve this problem.

Linux Malware further strengthens the links Lazarus Group to the 3CX Attack

North Korea-aligned threat actor, Lazarus Group, has been reported using Linux malware for the first time in its Operation DreamJob campaign.

Ransomware Attacks on the Rise

Orchestrated by cybercriminals, ransomware attacks are targeting individuals, businesses, and even governments like never before.

What Are Advanced Persistent Threats?

APTs can lead to data breaches and theft of sensitive information, disruption of operations, regulatory and legal repercussions, damage to brand reputation, increased costs, and even national security implications.

Vulnerability: Cookie Missing "HttpOnly" Explained

One of the most common medium-risk vulnerabilities we find is the “Missing httpOnly Cookie Attribute” vulnerability.

The Importance of Third-Party Risk Assessments and Verification of Controls

What is Tabletop Testing?

Tabletop testing is becoming the new standard for financial institutions - and is now an annual requirements for credit unions per the NCUA.

Cybersecurity Implications of ChatGPT and BingAI