Penetration testing tools – What are the most common? By Alex Harper - January 26th, 2022 Posted in Information Security cyber security, pen test, pen tester, pen testing, penetration testing, vulnerabilities, web proxy Penetration testing is a point-in-time security assessment, where a suitably skilled tester uses a combination of pen-testing tools and m...
ISO 27001 or Cyber Essentials – which Information Security Standard is suitable for you? By Hannah Pisani - January 18th, 2022 Posted in Information Security, ISO 27001 cyber essentials, cyber essentials plus, cyber security, information security, information security standard, iso certification, iso27001 Achieving certification to a recognised and accredited standard is a credible way for organisations to give their customers, partners and...
What is a firewall ruleset and configuration review? By Alex Harper - January 5th, 2022 Posted in Information Security cyber security, cyber security firewall, firewall, information security, penetration test, penetration testing A firewall ruleset and configuration review is a detailed assessment of your firewall ruleset and configurations. The test is typically c...
Does your business need a bug bounty programme? By Marcus Chambers - December 28th, 2021 Posted in Information Security bug bounties, bug bounty, cyber security, security programme A bug bounty programme is a colloquial term for a vulnerability disclosure programme. It is the process in which an organisation incentiv...
API penetration testing: What, why, how? By Thomas O'Donnell - December 21st, 2021 Posted in Information Security API, API Testing, APIs, applications, cyber security, penetration testing An application programming interface (“API”) penetration test is a security assessment carried out by a penetration tester to validate th...
UK government launches new National Cyber Strategy By Hannah Pisani - December 16th, 2021 Posted in Information Security cyber security, cyber stratgey, information security, UK government On the 15th of December, the Government in the United Kingdom (“UK) published a new National Cyber Strategy, outlining how the UK w...
What are cloud misconfigurations? By Marcus Chambers - December 14th, 2021 Posted in Evalian News, Information Security cloud, cloud storage, cyber security, information security, misconfiguration A cloud misconfiguration is an incorrect configuration of a cloud system that may lead to vulnerabilities. These misconfigurations typica...
Addressing the information security risks of digital supply chains By Marcus Chambers - November 30th, 2021 Posted in Information Security business security, cyber risks, cyber security, digital supply chain, information security, supply chains, third party suppliers Today’s supply chains are often opaque and complex, compromising mass ecosystems of vendors, suppliers and partners connected by servers,...
