PENETRATION TESTING
BEWARE: Penetration Tests Are Being Ignored by Enterprises Living Dangerously. Organizations are ignoring the recommendations of penetration testers, even when they find serious vulnerabilities in their clients’ systems, according to the Black Report from Nuix. Find out more
[SCMAGAZINEUK.COM]
SECURITY: Apache Struts Vulnerability Under Attack. An easy-to-exploit remote code execution flaw discovered in the widely used open-source Apache Struts 2 framework has been patched, but that’s not stopping attackers from attempting to exploit vulnerable systems. Find out more
[EWEEK.COM]
FINANCIAL: Testing Finds ‘100 Percent’ of Mobile Banking Apps Hackable. Mobile banking applications produced by 50 of the world’s largest 100 banks were all vulnerable to hacking attacks which could allow password capture or surveillance of users, according to new research from a European mobile security outfit. Find out more
[CYBERSCOOP.COM]
LEARN: The Top 5 Security Functions To Outsource. There is a cybersecurity talent shortage. According to some sources, there are currently up to 200,000 unfilled security positions in the United States, and an estimated one million open positions globally. By 2019, experts say there could be 1.5 million unfilled cybersecurity jobs. Given this scarcity in the cybersecurity market, combined with the daunting task of staffing a diversely skilled security team, a prudent question is which security functions can be effectively outsourced for the short-, medium-, or long-term. Here are five of the most logical security areas to outsource. Find out more
[FORBES.COM]
==========
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems February 2017 https://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-february-2017.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.
==========
