Monthly Archives: April 2019
Selecting a Vulnerability Management MSSP Partner
April 10, 2019
Challenges facing MSSP Clients: Many organisations looking for a Managed Security Service Provider (MSSP) do so in order to save on staffing costs, solve the challenges of staff retention, and assume accuracy and effectiveness improvements. Do you know what you are getting when engaging with a managed security provider? Are they experts in “everything security” […]
Read moreblog , case-study , general , news , press-release
Popular WordPress WAF bypass Zeroday discovered by edgescan
April 9, 2019
WordFence WAF XSS Bypass – CVE-2019-9669 by Anthony Yalcin A Web Application Firewall (WAF) is an application firewall that filters, monitors, and blocks malicious HTTP traffic. By inspecting HTTP traffic, it can prevent attacks related to web application security flaws, such as SQL injection, cross-site scripting (XSS), and security misconfigurations. WAFs may come in the […]
Read moreDon’t forget the fundamentals
April 3, 2019
Firefighting: Looking back at 2018 the evidence supports that many organisations struggle with the fundamentals of maintaining a reasonably secure posture. We’re still seeing large amounts of vulnerabilities which have been common place for over 15 years. Items such as Cross-site scripting, SQL injection and command Injection, all are still relatively common. The question is […]
Read moreAchieving Secure Defence in Depth – Rahim Jina, COO/Co-Founder
April 1, 2019
Achieving Secure Defence in Depth, a webinar organised by Infosecurity magazine, was an informative session of expert insight into the best practices to achieve a truly comprehensive security standpoint. The one and only Dan Raywood (shout out to him for featuring among the 100 top influencers at this year’s RSA, according to a list […]
Read more