pentestpartners.com9h
BEC-ware the Phish (part 2): Respond and Remediate Incidents in M365
Part two covers the response and remediation actions in M365. The response steps help to contain an incident and buy time to ...
pentestpartners.com3d
What goes into testing a ship?
Testing a ship involves identifying and mitigating cybersecurity risks using the “Identify, Prevent, Detect, Respond, Recover” framework. Guidelines include MSC.428(98) ...
pentestpartners.com3d
Maritime lawyers assemble!
Maritime cyber insurance has been playing catch-up with maritime cyber security for a while now. It was all pretty good until the availability of cheap VSAT meant that ships became constantly ...
pentestpartners.com8d
Mounting memory with MemProcFS for advanced memory forensics
MemProcFS was created by Ulf Frisk with the first release of v1.0 on github showing around 2018. Ulf Frisk is a well-known figure in the field of memory forensics and digital investigations. The tool ...
pentestpartners.com2d
You lost your iPhone, but it’s locked. That’s fine, right?
Default iOS configuration leaves your locked device vulnerable Ensure your emergency contacts are set. Use ‘FindMy’ to track ...
pentestpartners.com9d
Testing the security of CCTV systems
CCTV is often overlooked; ‘shadow tech’ whose security isn’t as carefully reviewed as core IT assets It is often a responsibility for facilities managers who may have little experience of cyber ...
pentestpartners.com15d
Using Volatility for advanced memory forensics
Memory forensics enhances investigations by analysing volatile data (in RAM) unavailable in disk forensics. Key insights from ...
pentestpartners.com24d
BEC-ware the phish (part 1). Investigating incidents in M365
We’ve seen an increase in multi-stage Adversary in the Middle (AiTM) phishing BEC in M365. These usually originate from a compromised trusted party, and lead to a series of AiTM attacks and follow-on ...