Posts tagged 'security vendor'

“I have a PC… I like their delete key, which doesn’t exist on the Mac.”

SUBSCRIBE! Use one of the ‘Listen on’ links below to keep updated using your favourite podcast platform.

Series 1 | Series 2

Other ways to listen: YouTube | Google Podcasts | Stitcher | RSS

Show notes for series 2, episode 1

Can Microsoft solve security? Do you need anti-virus on your smartphone? And are Macs more secure than PCs?

We ask Eugene Kaspersky (Kaspersky) and Christian Seifert (Microsoft).

This episode’s Security Life Hack from Mikko Hyppönen (WithSecure)!

Posted on May 25th, 2022 by SE Labs Team and tagged 2022, cloud, cybersecurity, enterprise, hacking, home user, physical security, podcast, security life hack, security vendor, small business, social engineering, targeted attacks

All episodes of DE:CODED, Series Two

Find all of the episodes from the award-winning DE:CODED Series Two in one handy place.

SUBSCRIBE! Use one of the ‘Listen on’ links below to keep updated using your favourite podcast platform.

Series 1 | Series 2

Other ways to listen: YouTube | Google Podcasts | Stitcher | RSS

Posted on May 16th, 2022 by SE Labs Team and tagged 2022, Apple, cloud, cybersecurity, enterprise, Google, hacking, home user, Microsoft, physical security, podcast, security vendor, small business, social engineering, targeted attacks

Call to action for security vendors.

Tests that follow the AMTSO testing Standard give vendors a chance to voice their opinions.

Register your interest

SE Labs has issued a new public endpoint test notification through the Anti-Malware Testing Standards Organization (AMTSO).

Posted on April 11th, 2022 by SE Labs Team and tagged 2022, AMTSO, Anti-Malware Testing Standards Organization, cybersecurity, security testing, security vendor, standards

How security vendors work with SE Labs.

SE Labs works with security companies to help develop and validate their products. When a security company works with SE Labs it gains two main benefits. If the product performs well it gains a much sought-after award. If it encountered problems the testing team will provide valuable information to help fix the issues.

Posted on March 9th, 2022 by SE Labs Team and tagged 2022, cybersecurity, enterprise, security testing, security vendor

See our presentation video from the AMTSO Town Hall meeting.

Network detection and response products monitor networks for attacks. They look for related information too, to help detect and recover from breaches.

Network detection and response: TESTED!

SE Labs has applied its Enterprise Advanced Security testing methods to network detection and response products. In this video we explain how and why we test the way we do.

Posted on March 8th, 2022 by SE Labs Team and tagged 2021, cybersecurity, enterprise, network security, security testing, security vendor, standards

The Enterprise Advanced Security testing programme includes new attack groups.

Our Enterprise Advanced Security (EAS) tests can assess any security software, hardware appliance, cloud service or combination thereof. Always evolving, these tests have expanded to include new attacks.

(These tests were originally called the Breach Response test. We renamed them for a number of reasons.)

Hackers and way they hack

Research on real attacker behaviour is a fundamental element of our EAS testing. Our team looks at the real-world behaviour of advanced threat groups, known as Advanced Persistent Threats (APTs).

Posted on February 16th, 2022 by SE Labs Team and tagged 2022, apt, cybersecurity, enterprise, enterprise advanced security, security testing, security vendor, threat series, ttp

Real-world security reports don’t always reflect your real world.

What makes a real-world security test useful? Does it need to provide a full assessment of a product or service? An assessment that is directly relevant for all potential customers? Or does it need to give just a taste of how effective a product can be?

The perfect security test

Tests can vary in how they are run and the level of information that they provide. Not all tests are equally reliable or even useful. But one thing they all have in common is that they aren’t perfect. Let’s look at how tests are limited, how you can interpret them and what the future holds.

Posted on January 26th, 2022 by Simon PG Edwards and tagged 2022, configuration, cybersecurity, enterprise, security testing, security vendor, standards

False positives are not all equal. Or always real false positives!

Security tests ought to test for ‘false positives’. It’s important to see if a security product stops something good on a customer’s system, as well as the bad stuff.

Measuring the balance in security

Almost nothing in this world can be reduced to ‘good’ or ‘bad’ accurately. There is too much subtlety: what’s good for one person is bad for another. Someone else might feel neutral about it, or slightly positive or negative. The same applies when testing security products. It’s rare to get a straightforward good/ bad result.

An anti-malware product might block all threats but also all useful programs. It might ask the user frequent and unhelpful questions like, “Do you want to run this ‘unknown’ file?” Alternatively, it might let everything run quietly. Or prevent some things from running without warning or explanation. Maybe you want to see alerts, but maybe you don’t.

We look at how to put the nuance back into security testing.

Posted on January 25th, 2022 by Simon PG Edwards and tagged 2022, cybersecurity, enterprise, false positives, home user, security testing, security vendor, small business

Endpoint protection against different types of attacker tested.

Our reports are based on ‘testing security from zero to Neo’. Their wide scope helps you choose the best anti-malware product, that can protect you from ransomware and other types of attack.

AMTSO-Compliant Test ✔

Targeted attacks come in all levels of sophistication

There seems to be no limit to the powers of cyber criminals. In 2021 the public became aware of the advanced capabilities of the NSO group, now infamous for helping governments spy on dissidents and others.

ENDPOINT PROTECTION: NEW REPORTS ONLINE!

Posted on December 23rd, 2021 by SE Labs Team and tagged 2021, cybersecurity, endpoint, enterprise, home user, security testing, security vendor, small business, standards, test results

Security testing needs to be more realistic and subtle than just running malware

Your own network can provide everything that an attacker needs to achieve its goal. In many ways it’s impossible to tell the difference between an effective attacker and a good systems administrator.

Posted on November 25th, 2021 by Simon PG Edwards and tagged 2021, cybersecurity, enterprise, security testing, security vendor, small business, standards