Thin Red Line: Penetration Testing Practices Examined

New Research by the BlackBerry Cylance Threat Intelligence Team

Client Expectations vs. Pentesting Tradecraft

Do pentesting firms meet client expectations for privacy, confidentiality, and compliance with legal and regulatory requirements? Read this report to learn about the practical, ethical, and legal risks for clients of many common pentesting practices.

Distinguishing White Hats from Black Hats

Learn how a reputed APT group was actually a respected Brazilian security services firm that may have exfiltrated more than 200 MB of sensitive client data, and how threat actors are acquiring and utilizing pentester-created malware and hacking tools.

Download the Report

This is a required field.
This is a required field.
this needs to be an email address
This is a required field.
this field is required

By clicking Submit, I agree to the use of my personal data according to the BlackBerry Cylance Privacy Notice. BlackBerry Cylance will not sell, trade, lease, or rent your personal data to outside parties. I understand the personal data I provide may be transferred outside of my country of residence to fulfill my request.

We use cookies to provide you a relevant user experience, analyze our traffic, and provide social media features. Read More

GOT IT