Blog (DACH)

Attack surface analysis explained: The 7 deadly vectors for web application attacks

22.Juli.2020

Stephane Konarkowski, Senior Security Consultant at Outpost24

Modern web applications are complex, it is often made up of many layers where potential flaws could appear making it hard to secure. That’s why it’s important to understand the key attack vectors hackers use to spot entry points and map your attack surface during reconnaissance and work back from there to protect your web application footprint.

How Outpost24 Secures the SDLC

13.Juli.2020

Eren Cihangir, Sales Engineer at Outpost24

At Outpost24, we’re committed to providing information security testing solutions to not only fit seamlessly into the SDLC, but also to enhance our customers’ experiences in implementing and maintaining their best practices to ensure their SDLC leads to a strong security posture and comprehensive resiliency around their full stack.

A CISO’s guide to boosting security awareness and morale in turbulent times

01.Apr..2020

Charlie Eriksen, CTO Adversary

During uncertain times, it’s more important than ever for businesses to install trust amongst their employees to ensure they are maintaining the same strict levels of security as the pandemic has become a hotbed for cyberattacks. CISOs and business leaders are having to scale back staff amidst an outbreak when moving to different working patterns and they’re looking to their existing teams to fly the security flag for their wider businesses.

So what can CISOs do to get the best from their staff during this outbreak to ensure security standards are maintained and we can start hiring again?

Website Security: Magecart and credit card skimming

14.Jan..2020

Simon Roe

Online payment skimming operations run by Magecart criminals continue to intensify and develop, reportedly compromising more than 2 million websites with the most infamous attack involving the breach of British Airways in 2018. Where credit card data of nearly 400,000 BA customers were compromised and resulted in a hefty fine of $230million and the moment the world stood up to take note of this new and dominant threat.

Why shifting left will be key to securing your business in 2020

21.Nov..2019

Charlie Eriksen, CTO Adversary

Increasingly, boardrooms are starting to recognize a simple fact: Being hacked is a question of if, not when. It’s no secret that most companies have experienced some type of data breach, often without their own knowledge. This all adds up to estimates that a cyber-attack occurs every 39 seconds, if you believe such statistics. That puts huge pressure on organizations to decrease the likelihood of not only adding to this statistic, but also fulfilling their data privacy duty they have towards their users, employees and customers.

TOP 10 of the world's largest cyberattacks, and how to prevent them

03.Dez..2018

Outpost24

Looking back over the years and what we see happening now is the same attack vectors being used that have led to breaches. Web applications and the human element of security remain the cornerstones when it comes to protecting your organization against any weak spots. Your organization’s ever-expanding digital footprint and supply chains are also factors adding to this risk, which cyber criminals are aware of and willing to exploit.

Shifting Left for Secure Application Development

16.Okt..2018

Davey Winder, Security Journalist

Davey Winder, our guest blogger and an award-winning security journalist, explains the role of Shifting Left for Secure Application Development

From Local File Inclusion to Remote Code Execution - Part 2

02.Okt..2018

Nikos Danopoulos, IT Security Consultant

Local File Inclusion - aka LFI - is one of the most common Web Application vulnerabilities. If conducted successfully, It might allow attackers to read sensitive information, access configuration files or even execute system commands remotely.

Securing DevOps and Web Applications Testing

06.Sep.2018

Outpost24

Today, companies are the primary target for hackers because of the sensitive data they hold. Cloud and Big Data technologies are fantastic tools to analyze and manage a large amount of data, but they are often not as secure as they should be. So while companies are benefiting from the availability of such applications to improve their productivity, IT security teams are hit with a wealth of security issues - they've never experienced such lousy visibility for key assets and data, it is hence more important than ever to strengthen the need for web applications testing.

Why you should take your web application security seriously - Infographic

27.Juli.2018

Outpost24 France

With digital transformation, a lot of companies invest and add layers of technology to their business using DevOps, Cloud and web applications for example. And with the DevOps approach always pushing to improve apps, security remain one of the companies' biggest challenge.