pentestpartners.com1d
New mandatory USCG cyber regulations. What you need to know
Two cybersecurity drills needed annual to test readiness.
pentestpartners.com2d
PCI DSS v4.0 Evidence and documentation requirements checklist
PCI DSS is complex and challenging Review the 12 top level controls Arm yourself with this checklist to help you navigate it PCI DSS v4.0 is challenging for a number of reasons: increased complexity, ...
pentestpartners.com4d
PCI DSS. Where to start?
Determine your role: Merchant or service provider Determine your level and requirements Identify your validation method: SAQ or RoC Use the PCI website The Payment Card Industry Data Security Standard ...
pentestpartners.com8d
ICS testing best results. Hint: Blend your approach
Onsite ICS testing is risk averse Laboratory ICS device testing uncovers more A blended approach is key How that works Demonstrable benefits For safety’s sake onsite ICS testing adopts a risk averse ...
pentestpartners.com10d
A tale of enumeration, and why pen testing can’t be automated
In an engagement we found an open directory on the internet belonging to our client By enumerating it we found a zip archive with a configuration file holding usernames and passwords That file gave us ...
pentestpartners.com14d
Events Search and Views Navigation
Enter Keyword. Search for Events by Keyword.
pentestpartners.com18d
How Garmin watches reveal your personal data, and what you can do
Related to my last post which detailed forensic techniques for recovering data in smart watches, this post looks specifically at Garmin watches. This time, we’ll explore how data can be accessed much ...
pentestpartners.com22d
Cyber security guidance for small fleet operators
Cyber threats aren’t just a problem for large shipping organizations, small maritime fleet operators are also at risk. Anything from phishing emails to ransomware attacks, these threats can disrupt ...
pentestpartners.com25d
How to secure body-worn cameras and protect footage from cyber threats
Body-worn cameras are typically used in public safety situations (e.g. by police officers or private security) and have an interesting cyber threat model. These cameras are frequently used to capture ...
pentestpartners.com1mon
Security flaws found in tiny phones promoted to children
We powered them up and did a basic set up for the default version of Android they ran, just as a regular user would. We initially assessed the Android build of the phones to look for the version of ...
pentestpartners.com1mon
Joseph Williams
The Pen Test Partners Security Blog brings you the latest news and trends in penetration testing and the internet security industry. More about our security blog » Pen Test Partners delivers ground ...
pentestpartners.com10mon
Careers at Pen Test Partners
We’re only as good as the people in our team, so we’re always looking for great people. Maybe that’s you? PTP is acutely aware of the lack of diversity in our industry, and are keen to address that.