SAL should not be confused with Design Assurance Level (DAL) from DO-178C although the terminology is similar. DALs are for ...

Placing a decoy file in the domain controller’s file share to detect someone looking for hardcoded credentials in scripts ...

Requirements include the appointment of a Cybersecurity Officer (CySO) who will be in charge of compliance. The development of a Cybersecurity Plan and an Incident Response Plan and it’s important ...

PCI DSS is complex and challenging Review the 12 top level controls Arm yourself with this checklist to help you navigate it PCI DSS v4.0 is challenging for a number of reasons: increased complexity, ...

The Pen Test Partners Security Blog brings you the latest news and trends in penetration testing and the internet security industry. More about our security blog » Pen Test Partners delivers ground ...

Determine your role: Merchant or service provider Determine your level and requirements Identify your validation method: SAQ or RoC Use the PCI website The Payment Card Industry Data Security Standard ...

Cyber threats aren’t just a problem for large shipping organizations, small maritime fleet operators are also at risk. Anything from phishing emails to ransomware attacks, these threats can disrupt ...

The Pen Test Partners Security Blog brings you the latest news and trends in penetration testing and the internet security industry. More about our security blog » Pen Test Partners delivers ground ...

In an engagement we found an open directory on the internet belonging to our client By enumerating it we found a zip archive with a configuration file holding usernames and passwords That file gave us ...