IT Governance, the cyber security trainer and provider, is urging organisations to test their networks and web applications in response to two new reports that reveal what the firm calls alarming statistics about corporate cyber security.
The newly released 2015 Trustwave Global Security Report (GSR) found that near all, 98pc of tested web applications and 95pc of tested mobile applications were found to be vulnerable to attack. Moreover, the M-Trends 2015 report revealed that hackers were present on an organisations’ networks for an average of 205 days before being detected.
Geraint Williams, head of technical services at IT Governance and a CREST-qualified penetration tester, says, “Websites and web applications are an attractive target for cyber criminals as they often have vulnerabilities that can be easily exploited. The fact that an organisation has not yet been breached, for instance, does not necessarily mean that it won’t be at some point. There’s also the possibility that it has already been breached without anyone even noticing.”
An effective form of defence against automated cyber attacks is regular penetration testing. Knowing your vulnerabilities is the first step in protecting your systems, so an organisation that conducts regular penetration tests stands a much better chance of blocking cyber attacks.
Williams says, “Regular vulnerability scans and penetration tests are necessary to determine your vulnerabilities and security holes as quickly as possible, and to ensure that your security controls are working.”
IT Governance offers fixed-price or bespoke penetration tests that can meet every testing requirement and budget.
