Enterprise Security Weekly (Video)

Penetration Tests: useful, pointless, harmful, required, ineffective? - Phillip Wylie - ESW #398

Listen Later

Penetration tests are probably the most common and recognized cybersecurity consulting services. Nearly every business above a certain size has had at least one pentest by an external firm.

Here's the thing, though - the average ransomware attack looks an awful lot like the bog standard pentest we've all been purchasing or delivering for years. Yet thousands of orgs every year fall victim to these attacks. What's going on here? Why are we so bad at stopping the very thing we've been training against for so long?

This Interview with Phillip Wylie will provide some insight into this! Spoiler: a lot of the issues we had 10, even 15 years ago remain today.

Segment resources:

  • Phillip's talk, Optimal Offensive Security Programs from Dia de los Hackers last fall

Show Notes: https://securityweekly.com/esw-398

...more
View all episodesView all episodes
Download on the App Store
Enterprise Security Weekly (Video)By Security Weekly Productions
  • 4.7
  • 4.7
  • 4.7
  • 4.7
  • 4.7

4.7

3 ratings

More shows like Enterprise Security Weekly (Video)

View all
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

637 Listeners

Click Here by Recorded Future News

Click Here

415 Listeners

Cybersecurity Today by Jim Love

Cybersecurity Today

176 Listeners

Hacking Humans by N2K Networks

Hacking Humans

314 Listeners

Talkin' About [Infosec] News, Powered by Black Hills Information Security by Black Hills Information Security

Talkin' About [Infosec] News, Powered by Black Hills Information Security

91 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

73 Listeners

Threat Vector by Palo Alto Networks by Palo Alto Networks and N2K Networks

Threat Vector by Palo Alto Networks

37 Listeners