SecureTeam

The Top 10 vulnerabilities being exploited today

Articles, Information Assurance / Ian Reynolds

The NSA (National Security Agency) recently published a security advisory about the publicly known vulnerabilities currently being exploited by Chinese state-sponsored actors. While this security advisory is focused on the activities of state-sponsored actors, it does show the threats and vulnerabilities considered most useful for exploitation. Taking a quick look at the list could provide […]

The Top 10 vulnerabilities being exploited today Read More »

How Return-Oriented Programming exploits work

Articles / Ian Reynolds

Return-Oriented Programming is a security exploit technique used by attackers to execute code on their target system. By obtaining control of the call stack, the attacker can control the flow of existing trusted software running on the computer and manipulate it to their own ends. New research published this month has demonstrated how SPECTRE style vulnerabilities

How Return-Oriented Programming exploits work Read More »

What is HTML smuggling?

Articles, Information Assurance / Ian Reynolds

HTML smuggling is a technique for bypassing perimeter security devices by generating malicious HTML behind the firewall – within the browser on the target endpoint. HTML Smuggling techniques sidestep traditional network security solutions such as email scanners, proxies and sandboxes by using the features of HTML5 and Javascript. This is done by generating the malicious HTML

What is HTML smuggling? Read More »

What is network segmentation

Articles, Infrastructure / Ian Reynolds

Network segmentation is a powerful and essential tool in the security manager’s arsenal that improves the security of computer networks and makes them easier to manage. Network segmentation provides protection against attackers who manage to breach the perimeter defences by limiting their ability to move laterally within the network. It can also protect key systems

What is network segmentation Read More »

What is a Next Generation Firewall?

Articles, Infrastructure / Ian Reynolds

What is a Next Generation Firewall and how can it help keep your network secure? The phrase ‘next generation firewall’ is increasingly being used by security vendors to describe their network security products. However, the definition of precise capabilities required to call a firewall next generation (or not) are far from universally agreed. This article

What is a Next Generation Firewall? Read More »

Key Lessons from 2020 Data Breach Report

Articles, Information Assurance / Ian Reynolds

Verizon has published their 13th annual Data Breach Investigations Report – and it focuses on security incidents and breaches that occurred during 2019. The 2020 DBIR analysed 157,525 incidents, 32,002 in detail and confirmed 3950 breaches in 81 countries. Although the scope is global, half of the incidents in the data come from North America

Key Lessons from 2020 Data Breach Report Read More »

What is Security Awareness Training

Articles, Information Assurance / Ian Reynolds

Security Awareness Training is an essential component of any organisation’s information security. Even though it is mandated by frameworks such as PCI-DSS or ISO 27001, Security Awareness Training should be more than just a compliance exercise. A good security awareness training programme will drive changes in behaviour amongst staff, suppliers and customers that will improve

What is Security Awareness Training Read More »

What is server hardening ?

Articles, Infrastructure / Ian Reynolds

Server hardening is a set of disciplines and techniques which improve the security of an ‘off the shelf’ server. Server Hardening is requirement of security frameworks such as PCI-DSS and is typically included when organisations adopt ISO27001. What is the attack surface The aim of server hardening is to reduce the attack surface of

What is server hardening ? Read More »

What Is The Dark Web & How Does It Work?

Articles / Ian Reynolds

Most people have heard of the dark web and the stories of the criminal activity that takes place on the dark web. For the most part, these stories are true; however, there is a lot more to the dark web than drugs, guns and stolen credit cards. In this article, we are going to be

What Is The Dark Web & How Does It Work? Read More »

Articles

The Top 10 vulnerabilities being exploited today

How Return-Oriented Programming exploits work

What is HTML smuggling?

What is network segmentation

What is a Next Generation Firewall?

Key Lessons from 2020 Data Breach Report

What is Security Awareness Training

What is server hardening ?

What Is The Dark Web & How Does It Work?

Our Address

Talk to us

Office Hours

Company Number

VAT Registration Number

Penetration Testing

Risk & Compliance Services

Quick Links

information. secured.

Head Office Address

Opening Hours

Stay in Touch