Cyber Security Awareness and Vulnerabilities Blog

RSS

Core Security has officially published vulnerability advisories 100 and 101. Looking back at the many issues that we've unearthed, each one has a story of it's own.

Read More

Core Security has traditionally taken the direct route to market. But with penetration testing going even further mainstream, there's a whole range of new paths we will fiollow.

Read More

The only way to truly understand how vulnerable your IT systems may be is to proactively test your end users to manage related risks.

Read More

A new survey coming out of BT finds that more companies than ever have embraced penetration testing as the best way to manage risk and prevent future data breaches.

Read More

Some smart people working in IT security doubt the importance of creating new executive-level leadership for cybersecurity in the U.S.; I'd suggest that we need just that, driven by some of the same reasons those experts cite in their arguments.

Read More

People frequently ask us just what Core does about zero days. Quite simply, we do everything that we can to ensure that the vulnerabilities graduate from zero day status as soon as we possibly can.

Read More

Tom Kellermann, Core's Vice President of Security Awareness, had the honor of testifying before a Congressional Committee on issues of national cyber-security.

Read More

Bob Maley, CISO for the Commonwealth of PA, has made some extrodinary progress in managing IT security risk via the adoption of automated penetration testing, as evidenced by his recent speech at the RSA Conference 2009.

Read More

Melissa Hathaway's presentation at RSA Conference 2009 appeared to embrace a more risk-based approach to enterprise security, which should include heavy doses of vulnerability management work.

Read More

The annual RSA conference is well underway, and the first day had plenty to talk about.

Read More