Posts tagged 'standards'

How seriously do you take the email threat?

Cyber criminals often use email as a way to start an attack. According to many sources email is by far the most common way that attackers try to gain access to your business and personal systems.

The UK government’s Cyber Security Breaches Survey 2022 reported that email phishing alone accounts for 83% of attacks.

Email cyber threat

But we all know that, don’t we? Because organisations, large and small, receive thousands of general and more targeted email threats every year.

EMAIL PROTECTION: NEW REPORT ONLINE!

Posted on June 10th, 2022 by SE Labs Team and tagged 2022, cybersecurity, email security, enterprise, security testing, small business, standards, test results

Simulated or real attacks in cybersecurity testing?

There are many different ways to test cybersecurity products. Most of the common approaches are useful when evaluating a service or system, but they each have pros and cons. In this article we outline the basic differences and limitations. Can you achieve realistic cybersecurity testing?

Posted on April 20th, 2022 by SE Labs Team and tagged 2022, cybersecurity, enterprise, penetration testing, realism, realistic cybersecurity testing, security testing, simulated attacks, standards, test like hackers

A strategic alternative to penetration testing.

Is Microsoft’s anti-virus good enough? Are the ‘next-gen’ endpoint products as good as they claim? Is our combination of anti-malware and whitelisting giving us full threat coverage? Enterprises are asking themselves, and SE Labs, these questions all the time. The good news is, we can help provide an answer.

Posted on April 13th, 2022 by Simon PG Edwards and tagged 2022, buying decision, configuration, cybersecurity, enterprise, hacking, security testing, standards, targeted attacks

Call to action for security vendors.

Tests that follow the AMTSO testing Standard give vendors a chance to voice their opinions.

Register your interest

SE Labs has issued a new public endpoint test notification through the Anti-Malware Testing Standards Organization (AMTSO).

Posted on April 11th, 2022 by SE Labs Team and tagged 2022, AMTSO, Anti-Malware Testing Standards Organization, cybersecurity, security testing, security vendor, standards

By understanding the rules of security testing.

The reports below contain security testing results. You can compare the performance of a variety of products that claim to protect you against online threats. This, in theory, will help individuals and businesses choose the best security product.

AMTSO-Compliant Test ✔

Rules of engagement

But these are free reports. How can you trust that the high-scoring vendors didn’t just pay for their ranking? Do you suspect that some low-scoring vendors dropped out of the report? Or asked to be retested until they scored better?

What are the rules behind the scenes in security testing?

ENDPOINT PROTECTION: NEW REPORTS ONLINE!

Posted on April 8th, 2022 by Simon PG Edwards and tagged 2022, cybersecurity, enterprise, home user, security testing, small business, standards, test results

SE Labs tested IronNet IronDefense against a range of hacking attacks.

The SE Labs Enterprise Advanced Security test is compatible with a wide range of security products and services. This includes NDR. Our latest network detection report is now available!

IronNet IronDefense vs. APTs

Our targeted attack testing is compatible with the MITRE ATT&CK framework, which means we based our work on the industry standard way to illustrate attacks.

Posted on March 15th, 2022 by SE Labs Team and tagged 2022, cybersecurity, enterprise, network security, security testing, standards, test results

See our presentation video from the AMTSO Town Hall meeting.

Network detection and response products monitor networks for attacks. They look for related information too, to help detect and recover from breaches.

Network detection and response: TESTED!

SE Labs has applied its Enterprise Advanced Security testing methods to network detection and response products. In this video we explain how and why we test the way we do.

Posted on March 8th, 2022 by SE Labs Team and tagged 2021, cybersecurity, enterprise, network security, security testing, security vendor, standards

Real-world security reports don’t always reflect your real world.

What makes a real-world security test useful? Does it need to provide a full assessment of a product or service? An assessment that is directly relevant for all potential customers? Or does it need to give just a taste of how effective a product can be?

The perfect security test

Tests can vary in how they are run and the level of information that they provide. Not all tests are equally reliable or even useful. But one thing they all have in common is that they aren’t perfect. Let’s look at how tests are limited, how you can interpret them and what the future holds.

Posted on January 26th, 2022 by Simon PG Edwards and tagged 2022, configuration, cybersecurity, enterprise, security testing, security vendor, standards

Endpoint protection against different types of attacker tested.

Our reports are based on ‘testing security from zero to Neo’. Their wide scope helps you choose the best anti-malware product, that can protect you from ransomware and other types of attack.

AMTSO-Compliant Test ✔

Targeted attacks come in all levels of sophistication

There seems to be no limit to the powers of cyber criminals. In 2021 the public became aware of the advanced capabilities of the NSO group, now infamous for helping governments spy on dissidents and others.

ENDPOINT PROTECTION: NEW REPORTS ONLINE!

Posted on December 23rd, 2021 by SE Labs Team and tagged 2021, cybersecurity, endpoint, enterprise, home user, security testing, security vendor, small business, standards, test results

Security testing needs to be more realistic and subtle than just running malware

Your own network can provide everything that an attacker needs to achieve its goal. In many ways it’s impossible to tell the difference between an effective attacker and a good systems administrator.

Posted on November 25th, 2021 by Simon PG Edwards and tagged 2021, cybersecurity, enterprise, security testing, security vendor, small business, standards