In September of 2018, California became the first state to pass a law requiring manufacturers to secure connected devices. The bill, TITLE 1.81.26. Security of Connected Devices, is the first of its kind for Internet of Things (IoT) devices and today we will explore some of the finer details of the law which comes into effect January […]
In our social engineering assessments, we typically utilize three different types of social engineering attacks: vishing, spear phishing, and bulk phishing. Most of our clients are familiar with phishing and spear phishing, but have questions about vishing. In this blog, we will talk about vishing, go over a typical attack, and explain why it can […]
It’s a simple question, but there are a surprising number of organizations that aren’t sure exactly where to find the answer to whether they need to be PCI compliant and how they need to demonstrate their compliance. For organizations curious about their compliance obligations when it comes to the Payment Card Industry (PCI), it can […]
As companies prepare for the January 1st, 2020 implementation of the California Consumer Privacy Act or CCPA, we have been fielding quite a few questions surrounding the new regulation and its requirement for “reasonable security”. One of the most often asked questions is “Does the CCPA require penetration testing?” Today we dive deeper into the […]
Many times we have organizations come to us that have never had security assessments or penetration testing performed before. Maybe they have a new compliance requirement that is pushing them to get some testing done, or maybe they keep hearing more about the benefits of penetration testing and feel they need to jump in and […]
In one of the most infamous data breaches of the decade, Equifax, one of the nations largest credit reporting companies, discovered unauthorized access to personal information and credit information of over 148 million US consumers. This week, I had the chance to sit down and listen to a podcast that interviewed Graeme Payne, the CIO […]
