Articles by
Cyber Security Associates
When it comes to the Payment Card Industry Data Security Standard (PCI DSS), there are common mistakes that every QSA...
Pentesting Keycloak – Part 2 This is part 2/2 of “Pentesting Keycloak”, this section will cover:
Just over 18 months ago, Cyber Security Associates Limited (CSA) took the decision to use the Microsoft Security stack...
What is Keycloak? Keycloak is an open-source Identity and Access Management (IAM) solution. It allows easy...
Trying to stay fully compliant today can be like trying to hit a moving target. The regulatory landscape is now...
SentinelOne Managed Security Service Prodiver (MSSP) Cyber Security Associates has partnered with SentinelOne to...
What is it? CVE-2021-44228, also known as Log4Shell, is a remote code execution (RCE) vulnerability affecting Apache...
In a recent online briefing, SureCloud’s Risk Advisory Senior Director, Craig Moores, sat down with Senior Consultant...
Jitsi-Meet Authentication Bypass (CVE-2021-33506) At CSA, one of our most vital services is penetration testing. We...
For some years now, geopolitical conflicts have been as much about bits and bytes as they have boots and bullets. The...
What is it? WPwnKit, discovered by the Qualys Research Team, is a local privilege escalation vulnerability affecting a...
Executive Summary Although the ongoing war between Russia and Ukraine is well known since the invasion in February...