As the larger companies begin to devote more resources to protecting themselves from a cyber attack, the criminals will inevitably shift their focus to smaller, less protected organisations (and then use them to attack their larger targets).
The problem is, small businesses rarely conduct penetration tests, and therefore have no way to verify that their security solutions are in fact giving them the protection they need.
E-Commerce Sites & Merchants
Penetration testing is now a requirement for compliance with PCI DSS 3.0 and as such, all companies that handle card transactions must conduct a test annually to ensure that cardholder data is protected.
Penetration Testing Can Help:
- Identify unknown vulnerabilities
- Highlight missing updates
- Verify security controls
- Test staff responses