Penetration testing is vital, but are you doing it right? Here are some common mistakes and advice on how to avoid them. An article by Michelle Drolet.
One of the most effective ways to uncover flaws and weaknesses in your security posture is to have a third party carry out planned attacks on your system. Penetration testing is all about exposing gaps in your defenses so that they can be plugged before someone with malicious intent can take advantage. There are several different types of pen test designed to target different aspects of your organization.
The article then dives straight into mistakes, such as:
- Failure to prioritize risks
- Using the wrong tools
- Box-ticking mentality to pen testing
- Poor reporting
- Disrupting the business
- Using out of date techniques
… and more to be found in this interesting article. Nice one!
[Read More]