Resources
Guide

Ways Hackers Look to Exploit Federal Agencies

Federal agencies are often high targets of attackers to obtain access to your environment, steal data, or leak information. There are 7 common ways hackers try to get into federal agencies. In this guide you'll get: Descriptions of each type, a couple of which might surprise you Real-world examples of why hackers want data in that way Strategies for...
Offensive Cybersecurity
Penetration Testing
Black and white photo of hospital environment with lock icon overlay
Blog

Proposed HIPAA Update Makes Yearly Pen Testing Mandatory

By Katrina Thompson on Thu, 07/17/2025
In early 2025, significant changes to the HIPAA Security Rule were proposed by the Office of Civil Rights for the Department of Health and Human Services (OCR). The proposed update to the HIPAA Security Rule, published on January 6, 2025, introduces a significant new requirement: all covered entities and business associates must conduct penetration...
Penetration Testing
Compliance
Video

Adopting a Proactive Approach to Federal Cybersecurity

Thu, 07/14/2022
Cyber criminals focus on the easiest targets, which often are federal agencies. A recent White House Executive Order on cybersecurity puts renewed focus squarely on securing federal network infrastructure. The order promotes, among other things, modernizing federal cybersecurity, improving detection of vulnerabilities and incidents, and moving toward a Zero Trust security model. But where do...
Penetration Testing
Proactive Guide to Federal Cybersecurity thumbnail
Guide

A Proactive Approach to Federal Cybersecurity

Cyber criminals focus on the easiest targets, which often are federal agencies. A recent White House Executive Order on cybersecurity puts renewed focus squarely on securing federal network infrastructure, which means federal agencies must step up their security games, complying with both existing and emerging regulations related to information security. Among other things, the order promotes...
Penetration Testing
Red Team
Datasheet

Department of Energy Core Security Blanket Purchase Agreement (BPA)

Core Security's Blanket Purchase Agreement (BPA) with the Department of Energy (DOE) establishes a cooperative agreement that streamlines the purchase process, allowing Core Security to efficiently fulfill the recurring needs of the DOE, with their specific requirements in mind. Products Core Impact This penetration testing platform provides a framework for efficiently uncovering and safely...
Penetration Testing
Threat Detection
2021 predictions
Blog

Adapting to a Changed World: 6 Cybersecurity Predictions for 2021

Tue, 12/22/2020
As a new year looms bright with possibility in front of us, how can we prepare for a world that looks profoundly different than it did a year ago? On the cybersecurity front, we can always anticipate continuing battles with familiar foes, as well as a few new challenges on the horizon. Though we may not have a crystal ball, based on our observations and discussions, here are six predictions for...
Penetration Testing
Threat Detection
PAM
IGA
Blog

How Pen-Testing Protects Your Federal Agency

Wed, 05/27/2020
It seems as if government agencies, both locally and nationally, are making headlines for mostly the wrong reasons these days. From scandals to breaches and cybersecurity this has become such a sensitive subject within the past year that these events have left most folks feeling even more on edge. As stated by Thales Data Threat Report, within the past year alone, 33% of government agencies...
Penetration Testing
Case Study

U.S. Government Laboratory

Overview Core Impact helped this U.S. Government Lab: Compliment vulnerability scanning Prepare for security audits Test end-user security awareness
Penetration Testing