Embed Size (px)
Citation preview
What a Penetration Test Won't Tell
Los Angeles Distributors
Courtesy of FPA Technology Services, Inc.
http://www.TechGuideforLADistributors.com
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Now you want to go further
and find out what other ways
an attacker could get into
your servers, sabotage your
shipping,
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
or steal confidential information
on your resellers and end-
customers, including their
payment details
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Yes, We Broke Into Your System,
But…
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
The pen test might look
for an attack path that consists
of several steps and possibly
several attack techniques,
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
such as phishing, hash attacks,
or a denial of service attacks
and reveal further holes
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
OK, We Broke In and
There Were All These Holes
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
A pen test won’t explain
fundamental IT security rules
or information security
awareness, either
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Well, No, We Didn’t Get Into
Your System
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Depending on what they tried
and how competent and
diligent they were,
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
you might be able to estimate
the probability of being
successfully attacked
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Things Will Be Different
Again Tomorrow
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Vendors release patches,
updates, and upgrades
to deal with these
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
What Can You Do About It?
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Make your own IT security
preparations beforehand to
make sure a pen test doesn’t
just show basic vulnerabilities
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• React to successful attacks
via pen testing to at least
make it harder for attackers
to get a foothold inside your
systems or to exploit such
a foothold
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Continue to keep your
IT security guard up whether
the pen tester succeeds
or fails
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Run all of your chosen
IT security tests regularly
and frequently
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Have regular penetration tests
kept your IT systems secure?
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Let us know your thoughts
in the Comments section below
Copyright © FPA Technology Services, Inc.
Learn How to Boost Your Company’s
Productivity with the Right Technology
Download Your Free Guide
How COOs at Los Angeles Distributors
and Manufacturers Get More Done
Now at http://www.TechGuideforLADistributors.com
