Blog

Security Insights

Deep dives, expert analysis, and practical guidance on exposure management, adversarial validation, and the future of AI-driven exposure management.

Compliance

RFID Hacking: Exploring Vulnerabilities, Testing Methods, and Protection Strategies

Radio-Frequency Identification (RFID) technology is everywhere—powering everything from contactless payments and inventory tracking to access control systems. But while RFID systems makes life more convenient, it also introduces serious security risks that many businesses overlook. Hackers have foun

Mar 27, 20251 min

Compliance

DPDP Rules 2025: What Everything You Need to Know

Every click, swipe, and scroll generates valuable personal data, making privacy an increasingly hot topic. From social media platforms to online shopping sites, almost every business collects, stores, and processes data about its customers. But with great data comes great responsibility. The new Dig

Jan 10, 20259 min

Compliance

Setting the Record Straight: Strobes’ Response to the GigaOm Radar for Penetration Testing

At Strobes, our mission has always been to empower organizations with cutting-edge solutions for Penetration Testing as a Service (PTaaS). While we greatly value third-party evaluations, accuracy is critical to maintaining industry standards and credibility. The recent GigaOm Radar for Penetration T

Nov 27, 202410 min

Compliance

NYDFS Cybersecurity Regulations Now in Effect: What You Need to Know?

As of November 1, 2024, the new amendments to the (New York State Department of Financial Services) NYDFS cybersecurity regulations have officially come into play. These regulations are significant for financial institutions, insurance companies, and other businesses under NYDFS supervision, as they

Nov 7, 20248 min

Compliance

Strobes Penetration Testing Compliance For Audits and Assessments

With the rise of cybersecurity threats, keeping up with industry rules is important but can be difficult. That’s where Strobes Penetration Testing as a Service (PTaaS) comes into play. This innovative solution is transforming how companies manage penetration testing compliance, audits, and assessmen

Oct 9, 20249 min

Compliance

PCI DSS v4.0 Changes: Pen Testing & Vulnerability Management Explained

The PCI DSS v4.0 Changes usher in a new era of proactive payment security under the Payment Card Industry Data Security Standard (PCI DSS) v4.0. While PCI DSS v3.2.1 is retired on March 31, 2024, specific v4.0 requirements are enacted after a one-year grace period. This article delves into the criti

Jun 26, 20245 min

Compliance

Adaptive Service Level Agreements (SLA) for Vulnerability Management- A strobes Guide

Traditionally, organizations have often relied on a standardized SLA for vulnerability management, imposing identical remediation timelines across all teams and vulnerabilities. This approach suffers from several shortcomings: Overwhelm and Discouragement: Teams with limited resources struggle to me

May 13, 20247 min

Compliance

Companies Maintaining PCI compliance and the Importance of a Vulnerability Management Program

In today's technology-driven world, data breaches and cyber-attacks have become a significant concern for businesses of all sizes. Companies that handle sensitive credit card information are at an increased risk of cyber-attacks, making vulnerability management critical to maintaining Payment Card I

Aug 21, 20233 min