#ptaas — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #ptaas, aggregated by home.social.
-
In this interview, Dave Gerry (@davegerryjr) CEO of
@Bugcrowd highlighted how Managed Service Providers facilitate embedding skilled offensive security expertise and real-time response into workflows.Gerry highlighted pairing algorithmic signal detection, pattern recognition, and predictive alerting with human creativity.
This power-packed interview discusses the following security topics and more:
🟠The need for open, continuous, crowd-powered defense to fortify the evolving cybersecurity landscape
🟠The role of model manipulation in handling the massive AI-generated exploits and misinformation
🟠Running Red Team as a Service (RTaaS) continuously to address zero-days before they are exploited🔗Read the full interview: https://technadu.com/outpacing-evolving-cyber-threats-leveraging-elastic-talent-intelligence-driven-feedback-rtaas-ptaas-and-human-ai-collaboration/600018/
🔔 👉 Follow @technadu for more Expert Insights and share your views in the comments below:
#TheCrowd #RedTeam #SOC2 #PCIDSS #MSP #RTaaS #ZeroDay #Vulnerability #Cybersecurity #AI #PTaaS #ASM #PenTest
-
In this interview, Dave Gerry (@davegerryjr) CEO of
@Bugcrowd highlighted how Managed Service Providers facilitate embedding skilled offensive security expertise and real-time response into workflows.Gerry highlighted pairing algorithmic signal detection, pattern recognition, and predictive alerting with human creativity.
This power-packed interview discusses the following security topics and more:
🟠The need for open, continuous, crowd-powered defense to fortify the evolving cybersecurity landscape
🟠The role of model manipulation in handling the massive AI-generated exploits and misinformation
🟠Running Red Team as a Service (RTaaS) continuously to address zero-days before they are exploited🔗Read the full interview: https://technadu.com/outpacing-evolving-cyber-threats-leveraging-elastic-talent-intelligence-driven-feedback-rtaas-ptaas-and-human-ai-collaboration/600018/
🔔 👉 Follow @technadu for more Expert Insights and share your views in the comments below:
#TheCrowd #RedTeam #SOC2 #PCIDSS #MSP #RTaaS #ZeroDay #Vulnerability #Cybersecurity #AI #PTaaS #ASM #PenTest
-
NowSecure mobile #PTaaS now extends support to apps on platforms like #Roku, #PlayStation, #AndroidTV, #Tizen, and #Xbox. As apps expand across streaming and gaming, this broad coverage provides comprehensive testing capabilities to safeguard data and ensure app resilience across diverse environments. Read more: https://www.nowsecure.com/blog/2024/10/30/nowsecure-launches-ptaas-for-tv-and-gaming-apps-comprehensive-security-testing-for-roku-playstation-android-tv-tizen-tvos-and-more/?utm_source=mastodon
-
I've been using a continuous penetration testing service for the last couple years against our public websites and the ROI looks pretty poor.
The "crowdsource your pen testing" model appears to incentivize freelancers that move quickly and find common issues that are repeated across many different sites/customers. For us, I haven't seen much evidence of them having success finding flaws that are complex or unique to our environment. That might be because we are awesome, but I suspect "shallow" testing might be an issue.
Seeing you've got hundreds of researchers signed up to test your site each year sounds great... until you start doing the math and realize each person is only spending an average of about 90 minutes, most likely repeating the work of their peers looking for quick hits.
Has anyone else purchased a continuous testing service, decided it wasn't worth it, and returned to dedicated testing engagements to either save money or receive more thorough testing?
Any offensive folk out there working these gigs & care to provide insight from the other side of the fence?
All feedback / guidance appreciated.