Mitnick Security Blog - Cybersecurity News and Articles

Red Team vs. Blue Team Penetration Testing: 3 Differences

Apr 4, 2023 4:46:17 AM

If you want to see how your organization would stack up against threat actors, there is a way to do so without risking a data breach. Red Team vs. Blue Team penetration testing is a safe way to identify vulnerabilities within your systems, networks, and internal infrastructure. But it doesn’t stop there. This elite form of a pentest can show you what a threat actor accomplishes even if your cybersecurity posture is well established. Below, we’ll tackle the three differences between the Red Team and the Blue Team for this engagement.

Is ChatGPT Considered a Cybersecurity Threat?

Mar 30, 2023 6:41:22 AM

Chatbots have been known to provide many helpful benefits for companies and their customer support departments for several years. Chatbots are programs created to create realistic and helpful conversations with others, which is why they’ve been used by customer support departments to streamline and automate certain customer-facing tasks.

Breach and Attack Simulation vs Red Team Pentesting

Mar 24, 2023 7:56:26 AM

Cyberattacks have posed a significant threat to organizations across the world, creating an urgency to take the necessary measures to shore up your network security to prevent catastrophic damage to your business.

What To Expect When You Get a Vulnerability Assessment From Mitnick Security

Mar 20, 2023 6:13:00 AM

Since threat actors are constantly developing new tools and techniques for infiltrating an organization’s defenses, effective cybersecurity can never be a “set it and forget it” mentality. It’s true that vulnerability scans and other software tools are important to your organization’s security posture — but you also need a team of cyber security experts on your side to keep up with cyber criminals. Below, we’ll discuss the value of an expert eye and what you can expect with a vulnerability assessment from Mitnick Security.

What's Included in a Penetration Test Report?

Mar 15, 2023 7:02:17 AM

Penetration tests are an extremely useful exercise to mitigate risks and patch your security gaps. If you’ve been asking yourself why do penetration testing more than once, look no further than the pentest report for your answer. Below, we’ll discuss what’s included in a penetration testing report and why this information is crucial to shoring up your organization’s cybersecurity.

What Is Pivoting in Cyber Security and What Does It Mean for Pentesters?

Mar 14, 2023 5:56:37 AM

Data breaches in 2022 were abundant and sophisticated. Realistically, it’s expected that this year we will continue to see threat actors test their limits and find new ways to infiltrate cybersecurity defenses and steal or exploit private data — potentially costing organizations billions of dollars in damages. But how do threat actors do it? Pivoting is the name of the technique that many threat actors would consider their number one weapon.

What Is One-time Password (OTP) Social Engineering?

Mar 7, 2023 9:00:00 AM

Even if your business has a mature cybersecurity program, there may be one vulnerability that threat actors can still use to steal your company data: your employees. Social engineering has evolved over the years as threat actors deploy new methods of fooling their targets — untrained employees — into granting access to the inner workings of your organization.

Pros and Cons of Manual vs Automated Penetration Testing

Mar 3, 2023 1:00:00 PM

Although threat actors are constantly utilizing new tradecraft and tools to pose a real threat against organizations, cybersecurity experts — including white hat hackers — stand against these threats with innovative techniques and tools of their own. Penetration testing is one such tool used to find the weaknesses in an organization’s cybersecurity measures. These cyber-attack simulations can either be done by software (automated penetration testing) or by cybersecurity experts known as pentesters (manual penetration testing).

Cyber Security Risks of Remote Employee Offboarding

Feb 28, 2023 12:55:00 PM

Remote work options are popular trends that provide flexibility for the employee and potentially a less expensive option for the employer. However, remote work devices can pose a real threat to your organization, especially after recent layoffs or organizational restructuring. We’ll explore the potential vulnerabilities caused by unprotected devices as well as data breach prevention techniques to keep your organization’s private data secure.

5 Examples of Top Social Engineering Attacks

Feb 22, 2023 12:00:00 AM

There’s something both humbling and terrifying about watching industry giants like Twitter and Uber fall victim to cyber attacks.

Penetration Testing

Incident Response

Computer Forensics

Expert Witness Services

Security Awareness Training

Vulnerability Assessment

Product Claims Testing

Red Team Operations

Social Engineering Testing

Books from Kevin Mitnick

Ghost in the Wires

The Art of Invisibility

The Art of Intrusion

The Art of Deception

In The News: More from Kevin Mitnick

Advice from Kevin Mitnick Featured in the Wall Street Journal Op-Ed

12 Ways to Defeat Two-Factor Authentication

We Need to Talk About NIST’s Dropped Password Management Recommendations

KnowBe4 Positioned as Leader in the Gartner Magic Quadrant for Second Consecutive Year

About Our Team

About Kevin

Global Ghost Team

In The News

Our Work

Our Clients

Testimonials & Reviews

Media Kit

Raising Your Security Posture with The Global Ghost Team

Resources

FAQs

Blog

Lockpick Business Card

Virtual Events & Webinars

Recent Articles

6 Types of Social Engineering Attacks and How to Prevent Them

What You Get When You Invest in Social Engineering Testing with Mitnick Security

Mitnick Security: Ransomware Awareness Training

Cyber Security Articles & News