On the 11th April members of the CovertSwarm team took part in an online discussion, hosted by the London CTOs group.
In this session we discuss zero-day vulnerability exploitation and the tactics and techniques used by bad actors, in the wild, today, to exploit businesses around the world.
You can watch the entire discussion below:
The attack your training prepared them for doesn’t exist
I’ve delivered more security awareness sessions than I can count. I’m also a social engineer, which means I’ve been the person those sessions are trying to…
The call nobody talks about
The attack call is the one that gets written up in the report. But in James Sheppard’s experience, it’s rarely the most important call he makes.
DORA Threat-Led Penetration Testing: What article 26 actually requires
Annual penetration testing does not satisfy DORA’s testing mandate. Here’s what Article 26 actually requires, who it applies to, and what a real TLPT exercise looks…