RSI Security

Blog

  • Social Engineering is the Art of What Three Things? Tactical Guide and Examples

    Social Engineering is the Art of What Three Things? Tactical Guide and Examples

    Social engineering remains one of the most reached-for techniques in the average hacker’s toolbox. The cyberattack’s effectiveness (and many hackers viewing it as a fun and exciting game) has made the method such a common strategy over the last decade. Yet, despite its prevalence, many users couldn’t answer when asked: Social engineering is the art of what three things? (more…)

  • Your Network Penetration Testing Checklist

    Your Network Penetration Testing Checklist

    One of the most impactful methods for securing networks uses offense to inform defenses. A network penetration test is a simulated attack on an organization’s network infrastructure, with the goal of anticipating how an actual cybercriminal would operate and sealing off vulnerabilities they could exploit. To get started, an organization should develop a comprehensive network penetration testing checklist, then consult it during the testing to assess its efficacy. (more…)

  • Why choose the HITRUST CSF over other control frameworks like NIST SP 800-53 and ISO/IEC 27001?

    Why choose the HITRUST CSF over other control frameworks like NIST SP 800-53 and ISO/IEC 27001?

    Organizations seeking streamlined solutions to their regulatory compliance requirements often look to comprehensive frameworks. The HITRUST CSF, the National Institute for Standards and Technology’s Special Publication 800-53 (NIST SP 800-53), and the International Organization for Standardization and International Electrotechnical Commission’s joint ISO/IEC 27001 are three prime examples of one-size-fits-all compliance. But which is best for your organization? (more…)

  • What Are Anti-Malware Remediation Tools?

    What Are Anti-Malware Remediation Tools?

    Malware is an inescapable reality in today’s cybersphere. Hackers with increasingly sophisticated methods are always looking for exploitable vulnerabilities to breach organizational security. It’s a question of ‘when’ rather than ‘if’ your organization will be targeted. Hence, malware remediation tools are equally crucial as prevention. With anti-malware remediation tools, you can adequately prepare for the worst-case scenario. (more…)

  • What is a Denial of Service Attack?

    What is a Denial of Service Attack?

    Security teams are dealing with new digital threats on an almost daily basis. From malware and ransomware to highly sophisticated, AI-driven attacks, IT teams always have their hands full. But one specific type of attack, known as a denial of service attack or DoS attack, is a mainstay in many hackers’ repertoires. After a minor lull in 2018, Denial of Service patterns were identified within over 40% of 2019’s and 2020’s cybersecurity incidents, according to Verizon’s 2021 Data Breach Incident Report. (more…)

  • What are the Top 5 Emerging Cyber Security Challenges?

    What are the Top 5 Emerging Cyber Security Challenges?

    With so many roadblocks and obstacles to overcome in today’s cyber landscape, organizations face more threats than ever before. Unfortunately, new problems often emerge before the old ones have even been solved. Amidst this ever-evolving threat landscape, we’ve compiled a list of the top 5 emerging cyber security challenges. (more…)

  • Are You Eligible for PCI DSS Remote Assessment?

    Are You Eligible for PCI DSS Remote Assessment?

    Ongoing PCI DSS adherence mandates that applicable organizations complete security assessments to verify compliance. Although a Qualified Security Assessor (QSA) will conduct onsite compliance audits and attestations, you may be eligible for a PCI DSS remote assessment. Read on to learn if you’re eligible. (more…)

  • Addressing the Top Internet of Things Security Vulnerabilities and Challenges

    Addressing the Top Internet of Things Security Vulnerabilities and Challenges

    The Internet of Things (IoT) is a catchall term that includes all the smart devices and connected things that we’ve become accustomed to in the 21st century. It’s a great way of isolating software infrastructure from physical hardware, but separating the two highlights some crucial Internet of Things security vulnerabilities and challenges that you need to be aware of. (more…)

  • Would Your Workforce Benefit from PCI Certification Training Modules?

    Would Your Workforce Benefit from PCI Certification Training Modules?

    Organization-wide adherence to PCI compliance is critical to protecting sensitive cardholder data from cybersecurity threats. PCI certification training can help increase employee awareness and understanding of PCI security frameworks, ultimately strengthening your organization’s PCI data security. Read on to learn more about the various PCI certification training modules. (more…)

  • Cybersecurity Tabletop Exercise Examples, Best Practices, and Considerations

    Cybersecurity Tabletop Exercise Examples, Best Practices, and Considerations

    Increasingly sophisticated cybersecurity threats call for organizations to mount innovative cyber defenses to mitigate threat attacks. Cybersecurity tabletop exercises are innovative and impactful ways to protect your organization against cybersecurity threats. Read on to learn more about best practices and considerations for common cybersecurity tabletop exercise examples. (more…)