Social engineering involves the manipulation or deception of individuals when trying to gain unauthorised access to the office premises or computer systems. In social engineering situations attackers need to achieve access to avoid the various preventative security measures such as intruder detection systems, intruder prevention systems and firewalls.
Dionach provide ISO 27001 Consultancy services for implementing and reviewing an Information Security Management System (ISMS), which is the system that an organisation must have in place to be certified to ISO 27001, or to follow the guidelines in ISO 27002.
PCI DSS (Payment Card Industry Data Security Standards) is a complicated subject for many of the millions of business required to meet these industry standards. All businesses that process, store or transmit card holder data are required to meet the requirements of PCI DSS. Dionach is a PCI Qualified Security Assessor (QSA) which enables us to provide reliable, practical advice to help your business remain compliant with PCI DSS. Dionach offer a variety of services to help with your compliance.
Dionach provide a number of services around Cyber Security Incident Response, Forensics and Investigations to a number of its clients. Dionach has a highly experienced team of analysts and investigators who, with years of project management experience, can help you to react, respond to and recover from cyber security incidents.
Information Security Audits are an essential tool to ensure that you have the necessary security policies and infrastructure in place to protect your computer systems and the information that they contain, and that security policies and procedures are being adhered to.
Dionach’s aim is to provide you with the most secure environment possible. Whilst being a specialist in Penetration testing, ISO 27001 consultancy and PCI DSS Consultancy, Dionach also offers advice and can be called upon to provide an objective view on infrastructure changes, policy changes and the impact on your overall information security stance.
Dionach are now an approved CHECK green light service provider. Business Development Director, Rob Embers said, “We are delighted to become a CESG CHECK Green Light provider. This completes all major certifications for Dionach and will allow us to provide a new level of service to our new and existing client base, this also helps aid our growth plans.”
I came across ProChatRoom during a web application penetration test. I found that version 8.2.0 of ProChatRoom was vulnerable to stored cross-site scripting (XSS), reflected XSS, SQL injection and ultimately to remote command execution by combining the stored XSS with SQL injection. In this article I will discuss these vulnerabilities in a little more depth.