Default security configurations, weak passwords and human error are the top vectors for cyberattackers targeting enterprise networks. Penetration testers share how to avoid these cyber risks.

As the number of cyberattacks rise, organizations must reconsider their approach to cybersecurity to be more proactive rather than reactive, which is why the adoption of proactive auditing, among a wider offensive cybersecurity approach, is so essential.

Cybersecurity executive Marielle Nigg-Droog has been named the new Chief Information Security Officer (CISO) at BreachLock.

The cybersecurity tactics at small and medium-sized businesses (SMBs) affect all organizations. From password management to multi-factor authentication, these cybersecurity strategies can benefit SMBs.

Do security researchers and ethical hackers learn more about cybersecurity from their employer, schooling or bug bounty experience? The Ethical Hacker Insights Report 2022 surveyed 1,181 people with cybersecurity experience to learn more.

For organizations looking to use pen testing as part of cybersecurity defense tactics to improve security, consider the practice in three steps. 

Mandiant and Google identified a significant jump in 2021 in security vulnerabilities that threat actors exploited before a patch became available.

With the number of cyberattacks faced by enterprise organizations, security teams need to rely on artificial intelligence to mitigate risk. However, a fully automated approach to cybersecurity presents challenges as well.

From multi-factor authentication to annual penetration testing, there are always more methods to implement in order to better secure small businesses from cyberattacks.

Ed Skoudis, a cybersecurity leader and educator, has been named the new President of the SANS Technology Institute, according to a statement. Ed will lead the institute's degree programs and Internet Storm Center.