Video
Brian Krebs interviews our pen testing team about their Iowa experience. For the first time, Gary De Mercurio and Justin Wynn discuss their arrest while conducting a physical penetration test in Iowa. They’re joined by CEO Tom McAndrew and Brian Krebs to highlight the impact for the security community.
February 1, 2020
Webinar
In this webinar, we will discuss the anonymized, aggregate findings of consulting engagements conducted by Coalfire Labs for external network, internal network and application penetration tests and social engineering in the retail industry.
January 29, 2020
Webinar
In this webinar, we will discuss the anonymized, aggregate findings of consulting engagements conducted by Coalfire Labs for external network, internal network and application penetration tests and social engineering. These results were recently published in our 2019 Securealities Penetration Risk Report.
January 21, 2020
Report
The Annual Penetration Risk Report provides a detailed look into the datasets tracked and analyzed over the last year of hundreds of engagements and penetration tests by Coalfire Labs, yielding unexpected insights and significant new trends.
November 12, 2019
White Paper
This white paper provides detailed information on the new HITRUST PRISMA weights and scoring rubrics. The new rubric is effective for assessments submitted on December 31, 2019 and later. The new scoring weights are effective for assessment objects created in MyCSF on December 31, 2019 and later.
October 19, 2019
Case Study
For BranchServ, a leading security and automation equipment and service provider to financial institutions nationwide, identifying logical vulnerabilities was critical to optimizing overall security for its LTA family of products.
September 23, 2019
Webinar
New Security Automation and Orchestration (SAO) techniques, pioneered by Coalfire and AWS, are changing the very way compliance is achieved, enabling FedRAMP Authority to Operate (ATO) in drastically less time and at reduced cost. This free, 10-minute online course details the significant benefits of SAO techniques and the role of third-party assessment organizations (3PAOs) in building and documenting FedRAMP-compliant environments.
September 20, 2019
Report
The Securealities report, Cloud Security Intelligence Report, provides a detailed look at how organizations are responding to security threats in the cloud. The report highlights what is and is not working for security operations teams in securing their cloud data, systems, and services in the cloud shared responsibility model.
September 17, 2019
Case Study
For Qualpay, achieving a Payment Card Industry Data Security Standard (PCI DSS) Report on Compliance (ROC) in a timely manner was critical to maintaining business. As a leading provider of integrated, omnichannel payment solutions, Qualpay knew it needed an experienced expert to efficiently assess and validate its PCI DSS efforts while protecting the security of its payment platform.
July 24, 2019