Security roundup: Penetration testing and threat filtering
October 1, 2014
Violet Blue looks at two critical security measures: pentesting (and why you should do it like you mean it) and threat filtering, which done right might have averted some recent high-profile breaches.
Many organizations neglect penetration testing that could reveal holes in their defenses and prevent hackers from stealing sensitive data -- a scenario that often results in huge costs and a PR nightmare. Threat filtering is another major security challenge, as companies struggle to determine which possible risks require their attention.
This roundup examines both of these key security issues and offers advice from a number of infosec experts, including Metasploit's Tod Beardsly, former Black Hat GM Trey Ford, and threat modeler Adam Shostack.