The continued inability of organizations to patch security vulnerabilities in a timely manner, combined with guessable passwords and the spread of automated hacking tools, is making it pretty easy for miscreants, professionals, and thrill-seekers to break into corporate networks.
This is according to the penetration-testing crew at Positive Technologies, which pored over the results of its 2019 client audits [PDF] and found that 71 per cent of the time – 20 out of 28 pentest contracts – its red team was able to get into their target using tools and tricks available to script kiddies and newbies.
"It is not that unskilled hackers are using methods that more skilled criminals would not need," Ekaterina Kilyusheva, head of Positive Tech's Information Security Analytics Research Group, told The Register last night. "But in most cases, atta ..
Support the originator by clicking the read the rest link below.
