.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
Penetration Testing Phases: Steps in the Process
by Jesse Roberts on September 6, 2024 at 1:00 PM
As cyber threats continue to grow in complexity and frequency, the need for regular penetration testing has become more critical than ever for organizations aiming to safeguard their sensitive data and systems. A well-executed penetration test follows a structured process designed to …
Penetration Testing: Black Box vs. White Box vs. Gray Box
by Danielle Corsa on August 13, 2024 at 1:15 PM
Penetration testing, or pen testing, is a critical practice for assessing and fortifying the security of networks, software, and services. Various types of pen testing, including black box, white box, and gray box testing, each offer distinct perspectives and insights. These diverse m …
What Is Ethical Hacking? A Comprehensive Guide
by Jake Dwares on April 2, 2024 at 1:45 PM
In today’s world, the pervasive threat of cyberattacks has illuminated a stark reality: no computer system is entirely immune to intrusion. This challenge has paradoxically ushered in the role of ethical hackers — cybersecurity professionals who employ their skills to fortify defenses …
Securing Your eCommerce Website From Hackers
by William DePalma on December 20, 2023 at 2:15 PM
In the bustling world of online retail, safeguarding your eCommerce website against cyber threats has become more crucial than ever. The 2022 Verizon Data Breach Report revealed that the retail sector experienced 629 incidents in that year, with 241 cases resulting in confirmed data d …
Penetration Testing: Understanding Red, Blue, & Purple Teams
by William DePalma on April 11, 2023 at 1:00 PM
Data breaches are growing more expensive by the day. The average cost of a data breach is projected to reach $5 million by the end of 2023, up from $4.35 million in 2022. Beyond direct financial loss, breaches carry long-term costs in regulatory fines, customer churn, and reputational …
OWASP Top 10: Why Compliance to OWASP Matters
by Jake Dwares on November 10, 2022 at 1:00 PM
.jpg)
During a recent web application penetration test, my Compass IT Compliance colleague Jesse Roberts was quickly able to identify and exploit a coding vulnerability on a client’s public facing web portal. As part of the engagement, Jesse was initially granted “standard user” access to t …