To you it’s a Black Swan, to me it’s a Tuesday…
Cybersecurity is a discipline with many moving parts. At its core though, it is a tool to help organisations identify, protect, detect, respond, and recover, then adapt to the ever-evolving risks and threats that new technologies, and capabilities that threat actors employ through threat modelling. Sometimes these threats are minor – causing annoyance but no […]
The Value of Physical Red Teaming
Introduction In testing an organisation, a red team will be seeking to emulate a threat actor by achieving a specific goal – whether that is to gain administrative control of the network and prove they can control backups (a kin to how many ransomware operators work), through to proving access to financial systems, or even gaining […]
Flawed Foundations – Issues Commonly Identified During Red Team Engagements
Cybersecurity Red Team engagements are exercises designed to simulate adversarial threats to organisations. They are founded on real world Tactics, Techniques, and Procedures that cybercriminals, nation states, and other threat actors employ when attacking an organisation. It is a tool for exercising detection and response capabilities and to understand how the organisation would react in […]
Let’s Go Phishing
Prism Infosec’s security consultant Kian J, provides a detailed account of a successful simulated phishing attack
Prism Infosec achieves CREST STAR Certification
CREST awards Prism Infosec CREST STAR status
