Microsoft Windows Active Directory Critical Vulnerability (CVE-2020-1472)
Given the nature of the vulnerability and that it is likely that exploits will be released in the coming days, Prism Infosec are making its clients aware of a critical vulnerability affecting Microsoft Windows Active Directory (AD) servers. The vulnerability takes advantage of a weak cryptographic algorithm used in the Netlogon authentication process and is described in CVE-2020-1472.
Prism Infosec achieves CREST STAR Certification
CREST awards Prism Infosec CREST STAR status
Prism Infosec joins the Civil Aviation Authority ASSURE Framework
Prism Infosec CAA ASSURE approved
Blog Post: Top 3 Common Networking Attacks
Prism Infosec’s Senior Security Consultant, Aaron, reviews the “Top 3 Common Networking Attacks”
Prism Infosec Transition to the IASME Cyber Essentials Certification Scheme
Today marks the official launch of The IASME Consortium becoming the National Cyber Security Centre‘s Cyber Essentials Partner. IASME’s Chief Executive, Dr Emma Philpott, MBE, said, “We welcome the prospect of continuing to work in partnership with NCSC and the fantastic array of expert Certification Bodies in our assessment network to further develop and grow […]
Blog Post: Home Working Cyber Security Guidance
During these uncertain times, Prism Infosec are doing their utmost to support the community with information security guidance and advice.
Prism Infosec awarded place on GCloud 11 Government Framework
Following successful procurements on GCloud 10, Prism Infosec has been approved onto the new UK Government GCloud 11 Framework. Designed to streamline the process of procuring cloud services by public sector organisations, the framework lists suppliers that have provided a legal declaration that they meet the standards required negating the need for a full tender or […]
Coronavirus Update
Prism Infosec would like to provide an update to our clients on our continued capacity to deliver cyber security services. Information security responsibilities should not stop in the event of a pandemic, indeed there is clear evidence of cybercriminals looking to exploit this further (see: https://www.ncsc.gov.uk/news/cyber-experts-step-criminals-exploit-coronavirus). Our ISO27001:2013 Information Security Management System makes full provision for […]
Prism Infosec Achieves ISO27001 Certification
Prism Infosec is delighted to announce that its Information Security Management System (scoped to the entire organisation) has been certified by Alcumus ISOQAR to be compliant with the requirements of ISO27001:2013. Building upon our certified ISO9001:2015 Quality Management System (QMS), this exciting news demonstrates Prism Infosec’s commitment to information security and continual improvement. Well done […]
Prism Infosec win Award for Excellence at PCI London 2020!
Prism Infosec is delighted to announce that it was presented with a PCI Award for Technical Excellence at the PCI London 2020 conference on the 23rd January 2020. The award was in recognition of the delivery of an advanced red teaming approach to meeting PCI requirements for technical assurance. The review panel felt that Prism Infosec’s case […]
