News & Insights

By Alex Harper - January 26th, 2022

Penetration testing is a point-in-time security assessment, where a suitably skilled tester uses a combination of pen-testing tools and m...

By Hannah Pisani - January 18th, 2022

Achieving certification to a recognised and accredited standard is a credible way for organisations to give their customers, partners and...

By Sandra May - January 13th, 2022

On the 20th December, the Information Commissioner’s Office (“ICO”) requested feedback from the general public on three...

By Alex Harper - January 5th, 2022

A firewall ruleset and configuration review is a detailed assessment of your firewall ruleset and configurations. The test is typically c...

By Marcus Chambers - December 28th, 2021

A bug bounty programme is a colloquial term for a vulnerability disclosure programme. It is the process in which an organisation incentiv...

By Thomas O'Donnell - December 21st, 2021

An application programming interface (“API”) penetration test is a security assessment carried out by a penetration tester to validate th...

By Hannah Pisani - December 16th, 2021

On the 15th of December, the Government in the United Kingdom (“UK) published a new National Cyber Strategy, outlining how the UK w...

By Marcus Chambers - December 14th, 2021

A cloud misconfiguration is an incorrect configuration of a cloud system that may lead to vulnerabilities. These misconfigurations typica...

Evalian Blog