Tales from the Road: Think Your Web Application is Attacker-Proof? Think again.
02.16.21Our information security and managed security services firm found vulnerabilities in our client’s web application security.
02.16.2102.16.21Category: Tales from the Road
02.16.21
Tales from the Road: Water Utilities, Take Warning!
02.09.21If you don’t want to issue the dreaded boil-water advisory then make sure your wireless network is hacker-proof. How our team was able to drive up to a municipal water utility, join the wireless SCADA network and gain the access needed to do some major damage to the water supply – all in 10 minutes… Read more »
Tales from the Road: Y2K Called, It Wants Its Passwords Back
12.16.20Part 1: Get Inside the Heads of the DirectDefense Team as We Launched an Attack on a Client’s System to Bypass Passwords and Gain Access to “Protected” Critical Data This post is the first in a 2-part series addressing the need for strong passwords across all industries to adequately protect important company and user data.… Read more »
Tales from the Road: It’s 2020 and Your Passwords Still Suck
12.16.20Part 2: Get Rid of Weak Passwords like Winter2020 and Password1 – Our Attack into One Company’s Database Highlights the Risk of Poor Passwords This post is the second in our 2-part series addressing the need for strong passwords across all industries to adequately protect critical information. In a recent client engagement, we set out… Read more »
Tales From the Road: Never Underestimate the Twisted Tactics Used in a Spear Phishing Campaign
07.10.20Think it’s twisted to use sick children to lure unsuspecting people to provide their credit card information to donate? You bet! Think tactics like this are beyond the schemes of an attacker who will go to any length to steal sensitive data? Never.
Tales From the Road: It’s a Physical Penetration Test – Do You Know Where Your Network Is?
07.09.20How one “hotel guest” gained access to the entire network from a network switch found inside their linen closet during a physical penetration test.
Tales from the Road: How the “Copier Repair Guy” Owned Your Network During a Physical Pen Test
06.30.20Posing as a copier repair guy, our consultant managed to get inside a company’s network during a physical pen test.
Tales From The Road: Keeping a Business Operational After a Ransomware Attack
05.19.20Tips for a fast recovery after a ransomware attack, and how to mitigate the impact of such an attack with improved data backup.
Tales From The Road: How the landscaper stole all your data
04.22.20How We Compromised a Major Corporate Network During a Physical Pen Test Here’s a “pro tip” for any company out there using armed guards to protect their facility: If you’re not properly segmenting your network, those armed guards can’t do anything to stop an attacker from compromising your company’s private data. We recently conducted a… Read more »
