According to Gartner, the public cloud services market grew by 17.5 percent in 2019 ($214.3 billion up from $182.4 billion in 2018).As cloud investments will continue to surge in the future, organisations would face a big challenge of managing cloud security risks. Here are a few trends that will shape cloud security in 2020
Cloud Security Trends Read More »
With the entire world mostly moving online, our Executive Advisor Shamane Tan has wasted no time in bringing her acclaimed Cyber Risk Meetups (of more than 3,000 cyber security professionals across Australia, Singapore and Japan) to the digital platforms as well. We are proud to be a community supporter as she launched the Mega C-Suite
Cyber Risk Virtual Meetups: Mega C-Suite Series Read More »
Data breaches are rampant in the world of business today. Hardly a week goes by without a reported breach or fines that range into the millions of dollars. This new age of security has brought about a change in the way that organisations structure their risk, and their insurance. Unfortunately for many, their over-reliance on
Cyber Insurance vs Security Policies: Financial and Reputational Risks Read More »
Threat actors around the world have been trying to take advantage of the coronavirus pandemic situation by registering coronavirus related domains and selling them at a discounted price on the dark web. The average number of registrations for such domains have increased almost 10 times over the past few weeks.
Increase in cyber attacks due to COVID-19 pandemic Read More »
Mr Builder: ‘I only had 14 days to build this web app, I don’t have time to keep up with the demands of continuous testing and security.’
Mr Breaker: ‘Your application has insufficient transport layer protection and insecure direct object references and don’t even get me started on the security misconfigurations’.
Mr Builder (Yellow) loves
Yellow Team + Red Team = Orange Team Read More »
An ADC (Account Data Compromise) event occurs when a third-party attacker or a group of attackers gain unauthorised access to cardholder data that is held within an organisation in either electronic or physical form. Even though the number of ADC events may vary year by year, it takes only one ADC event to negatively impact
Account Data Compromise Read More »
Privasec’s DroneSec team had a great time at the Singapore Airshow (Asia’ largest Aerospace and Defence event) and Global Drone Security Network (GDSN) last week.
Privasec’s DroneSec team in Singapore Read More »
Many organisations don’t fully understand the difference between vulnerability scanning, a penetration test, and Red Teaming.In our latest article, we discussed the difference between a vulnerability scan and a penetration test. Read the full article here.This article explains the difference between a red team assessment and a penetration test and which assessment is
Red Teaming vs Penetration Testing Read More »
As more business processes increase their reliance on data, information security is not just a technical issue anymore. The bigger question, however, is around adoption of an effective risk management framework that not only quantifies risk but also improves executive decision making.
One such structured and defensible framework is FAIR (Factor Analysis of Information Risk).
Quantifying Cyber Risk Read More »
A vulnerability scan detects and classifies system weaknesses in computers, networks, and communications equipment. A penetration test, on the other hand, is the practice of testing a computer system, network or web application to identify insecure business processes, poor security settings, or other weaknesses that a hacker could exploit.
What does your organisation need: Penetration Test or Vulnerability Scan? Read More »
