NSEC was the first mechanism introduced by DNSSEC to prove the non-existence of a domain name. It works by linking records in ...

To become a CE+ assessor, I had to take the Vulnerability Assessment Plus (VA+) exam, which is split into two parts: a practical element and a multiple-choice section. The exam requires a solid ...

Determine your role: Merchant or service provider Determine your level and requirements Identify your validation method: SAQ or RoC Use the PCI website The Payment Card Industry Data Security Standard ...

PCI DSS is complex and challenging Review the 12 top level controls Arm yourself with this checklist to help you navigate it PCI DSS v4.0 is challenging for a number of reasons: increased complexity, ...

Rockchip has a structured sequence of bootloaders. Using various plugs can allow access to the MCU’s RAM and storage. There are many utilities to allow reading of information from the MCU. Use this ...

The aviation industry realised some time ago that taking a standard approach to the cyber security of its products was needed and that this was a specialist discipline. A family of documents was ...

Requirements include the appointment of a Cybersecurity Officer (CySO) who will be in charge of compliance. The development of a Cybersecurity Plan and an Incident Response Plan and it’s important ...

Poorly protected authentication requests from privileged automated tasks (e.g. vulnerability scanners, health checks) could be intercepted by rogue authentication servers planted in the internal ...

The Pen Test Partners Security Blog brings you the latest news and trends in penetration testing and the internet security industry. More about our security blog » Pen Test Partners delivers ground ...

We are vendor neutral and platform agnostic. This means that you get unbiased testing and appraisal of any and every environment. We keep a very clear and level head too. We are not fazed by high ...