SAL should not be confused with Design Assurance Level (DAL) from DO-178C although the terminology is similar. DALs are for ...

Placing a decoy file in the domain controller’s file share to detect someone looking for hardcoded credentials in scripts ...

Combining these ICS testing approaches hits the sweet spot, where onsite ICS tests can provide guidance about which devices ...

We’re only as good as the people in our team, so we’re always looking for great people. Maybe that’s you? PTP is acutely aware of the lack of diversity in our industry, and are keen to address that.

IASME recognises Pen Test Partners as a Cyber Essentials certifier; something we’re very pleased about. By working with us you can achieve Cyber Essentials scheme status with a minimum of fuss and ...

Two cybersecurity drills needed annual to test readiness.

As ships get bigger, with more automation, fewer crew members, and more connectivity, the attack surface of a modern commercial vessel is becoming as complex and diverse as that of a connected car or ...

For a long time, the primary security model for airplanes has been physical. Airside security controls are there to prevent access by unauthorised personnel. However, as connectivity with e-enabled ...

Related to my last post which detailed forensic techniques for recovering data in smart watches, this post looks specifically at Garmin watches. This time, we’ll explore how data can be accessed much ...

In an engagement we found an open directory on the internet belonging to our client By enumerating it we found a zip archive with a configuration file holding usernames and passwords That file gave us ...

Cyber threats aren’t just a problem for large shipping organizations, small maritime fleet operators are also at risk. Anything from phishing emails to ransomware attacks, these threats can disrupt ...