6 Reasons Businesses and Governments Fail to Run Penetration Testing

Poking and prodding your own network defenses helps reveal security gaps, so you can close them — before cyber threat actors discover and exploit them. This is the primary benefit of penetration testing and why it is a key step that a growing number of companies and government organizations now take to mitigate cyber risk. … Read more

Cloud Apps Make the Case for Pen-Testing-as-a-Service

News, news analysis, and commentary on the latest trends in cybersecurity technology. Applications are increasingly distributed, expanding companies’ cloud attack surfaces and requiring regular testing to find and fix vulnerabilities — and avoid the risk of a growing sprawl of services. With enterprise applications defaulting to cloud infrastructure, application security testing increasingly resembles penetration testing … Read more

Argus Cyber Security Opens New Automotive Penetration Testing Lab in North America

Argus expands its North American presence, leveraging its world-class automotive cyber security expertise and penetration testing capabilities to cater for local OEMs and Tier 1 suppliers. DETROIT, April 3, 2024 /PRNewswire/ — Argus Cyber Security, a world leader in automotive cyber security, today announced the opening of its new penetration testing lab in Detroit, Michigan. … Read more

PCI Compliance & the Importance of Penetration Testing | StateTech Magazine

Here are the top state and local IT leaders, podcasters and personalities to follow to stay up to date on the latest technology trends. Adam Stone writes on technology trends from Annapolis, Md., with a focus on government IT, military and first-responder technologies. Adam Stone writes on technology trends from Annapolis, Md., with a focus … Read more

Sprocket Security raises $8M to enhance cybersecurity penetration testing platform – SiliconANGLE

Expert-driven offensive security platform startup Sprocket Security Inc. today announced that it has raised $8 million in new funding to accelerate platform developments and expand sales and marketing initiatives. Founded in 2017, Sprocket Security offers continuous penetration testing services that detect changes in an organization’s network, with human-driven testing to identify security risks. The company’s … Read more

Why Penetration Testing Is The Perfect Career Move | EC-Council

Cybersecurity is a highly promising career choice today, with a growing demand for information security professionals. This industry offers many opportunities, especially in various specialized cybersecurity roles, including that of ethical hackers and pen testers, that organizations actively seek. With the significance of pen testing gaining prominence, choosing this field or making a switch can … Read more

CEH vs PenTest+ | Ethical Hacking is NOT Penetration Testing | EC-Council

As this article shows, the comparison of CEH to Pentest+ is misleading. In a nutshell, you would not compare a cake to flour, as it makes no sense to compare an entire dish to a single ingredient. Ethical hacking on its own is NOT pen-testing. Penetration testing focuses on the security of the specific area … Read more

What PCI DSS 4.0 means for pen testers | SC Media

The next version of the Payment Card Industry Data Security Standard goes into effect over the next 18 months. Because the new standard requires more documentation about methodology and means, penetration testers may find themselves under greater scrutiny from the organizations that hire them. On the positive side, the updated standard may mean better business … Read more

50 World’s Best Penetration Testing Companies – 2023

Penetration testing, sometimes known as pen testing, simulates a cyber assault on a computer system or network to detect vulnerabilities and potential security issues. Penetration testing companies aim to evaluate the effectiveness of an organization’s security measures and to identify areas where security can be improved. A trained security professional, known as a penetration tester … Read more

FedRAMP Solicits External Feedback for Proposed Updates to IT System Penetration Testing Guide

The Federal Risk and Authorization Management Program launched a request for comment on a draft guide on the requirements for conducting and reporting on FedRAMP penetration tests. The guidance aims to enhance aid to organizations dealing with potential vulnerabilities in their IT infrastructure, FedRAMP announced Monday. Depending on public feedback, the updated FedRAMP Penetration Test … Read more