As we finish 2012 and look forward to 2013, Secure Ideas’ staff would like to wish everyone a happy new year. We also thought it would be fun to do a quick review of the year, with each of our staff including their thoughts. So here goes…. What a great second year for Secure Ideas! …
Here at Secure Ideas we have had a ton of fun experiences during our work. When we teach or present, people often ask us to talk about the things we have been able to do, such as pulling credit cards out of a network via a Facebook application or tricking staff at a client into …
Many organizations do not include phishing in their annual penetration tests, as they believe that most phishing emails will be stopped by their email filtering solutions. Any “phishy” emails that get through will likely be clicked on by their employees but stopped by anti-virus or web filtering controls. These controls are good, but they typically …
A common question I get from potential clients is “what is grey box testing and why do we need it?” I believe this often stems from the request for credentials to an application when discussing the penetration test. The thought is that if we are testing the system like an attacker, providing credentials is breaking …