News Pen Testing Firm Claims 92% Successful Breach Rate of Their Clients - Printable Version +- Red Security (https://redsecurity.info/cc) +-- Forum: General (https://redsecurity.info/cc/forumdisplay.php?fid=1) +--- Forum: News (https://redsecurity.info/cc/forumdisplay.php?fid=4) +--- Thread: News Pen Testing Firm Claims 92% Successful Breach Rate of Their Clients (/showthread.php?tid=938)

Pen Testing Firm Claims 92% Successful Breach Rate of Their Clients - Mad-Architect - 02-08-2019     During the early days of February, a security firm named Positive-Technologies published its Penetration Testing Activity report from the year before. In this report, a number of companies were successfully breached, allowing access to their internal networks. The firm stated that they had gotten inside the networks of over 90% of the companies they tested; and this is a staggering conclusion.    The firm placed the majority of these successes on the holes found in the source code of external-facing web applications. Their teams were able to access to internal stations and servers, including the SWIFT money exchange, and ATM controls.    What is worse about this, is that these were gained using old vulnerabilities, brute-forcing, social engineering, and probing for holes in the WiFi. Where the wireless connections were concerned, they had successfully breached 87% of the networks from either outside the client workplace, or sometimes from nearby coffee shop and parking lots.    Positive Technologies finally stated that no company is perfect, and with that said, they only tested 33 companies, but these companies reside in the financial, industrial, and government sectors.      Proper security is a serious issue that is still plaguing society today, as we advance deeper into the digital age, hacking will become more rampant than it ever has, and companies are going to need to adapt, and do it soon.    That was the news folks, have a good weekend, and stay safe out there.    ----Mad-Architect