Lessons Learned from Capital One’s Incident Response Plan

by Sarah Harvey / December 15, 2022

There were many missteps that led to the Capital One breach, but what’s the one thing that went as planned? From our perspective, Capital One’s incident response plan seemed to function as intended. Incident response is incredibly important following a breach – that’s why having a plan and team in place is required by so many information security frameworks. The data proves the importance of incident response plans as well.…

Testing Physical Security Measures Through Penetration Testing

by Sarah Harvey / December 15, 2022

When you think about how penetration testing is performed, do you think about testing physical security measures? While many people believe security breaches only happen on the technical side of an organization, they can also start in your physical environment. You may find it surprising to know that some of the most advanced security attacks originate from an area as simple as a garbage can. Items such as: Bank statements…

What Should You Really Be Penetration Testing?

by Sarah Harvey / February 20, 2023

What is Penetration Testing? Pen testing is a valuable investment for any organization – it’s a critical line of defense used to protect and secure your sensitive assets from malicious outsiders. But for organizations that have never undergone pen testing, or for those who have never even heard of penetration testing before, it’s understandable why you would have questions like: What is pen testing? What parts of my organization should…

Breach Report 2019 – October

by Sarah Harvey / December 15, 2022

Every month there is headline after headline reporting about new data breaches. Whether it’s a ransomware attack, a negligent employee opening a phishing email, or a state-sponsored attack, millions of individuals are impacted by data breaches and security incidents on a regular basis. Let’s take a look at some of the top data breaches that occurred during October and the lessons we can learn from them. Krystal Fast Food Chain…

Sigstr’s Commitment to Security: The SOC 2 Journey

by Sarah Harvey / June 13, 2023

Sigstr helps the world’s best marketers do amazing things with their employees’ emails. The average person spends 6.3 hours in their inbox every day. Sigstr gives marketers the ability to serve targeted ads to their audience where they're spending the majority of their time: the inbox. This connectivity between Sigstr and email clients presents information security risks that Sigstr must address. We sat down with Brent Mackay, Director of Product…