Articles - OnSecurity

Proactive Security Testing: What It Is, and Why You Need It

Discover proactive security testing: prevent breaches before they happen, enhance compliance, and secure AI/LLM systems with continuous validation

Continuous Assurance: How to Build an Ongoing Testing and Monitoring Programme

Move beyond one-off pentests. Learn how to build a continuous assurance programme with regular testing, monitoring, and clear metrics that security leaders can track.

A Guide to Multi-Factor / 2-Step Authentication Methods

Discover how 2-step authentication secures business data from breaches. Compare MFA methods to strengthen your security.

What Is a Supply Chain Attack and How Can I Prevent Them?

Learn how supply chain attacks exploit third-party vulnerabilities and discover essential security measures to safeguard your business from costly breaches.

A Guide to External Attack Surface Discovery: What Hackers Can Find About Your Business Online.

Discover what hackers can learn about your business online and how external attack surface discovery helps you reduce risk and strengthen security.

Types of penetration testing for your business needs

Discover the types of penetration testing, including network, web, mobile, cloud, API, and social engineering tests. Learn how to choose the right pentest.

How to build a human firewall: Creating an effective security awareness programme against social engineering

Build a strong human firewall with effective security awareness training. Learn how to prevent social engineering and strengthen employee defences.

Public vs Private Cloud Computing: Which is More Secure?

Explore the pros and cons of public and private cloud computing to determine the best fit for your needs. Learn how to secure any cloud environment with best practices.

What Does an Internal Infrastructure Pentest Find? Key Insights Explained

Discover what an internal infrastructure test reveals about your systems. Gain insights to enhance security and performance. Read the article for more.

Hijacking AWS – Hosted GitHub Runners

If you’re running self-hosted GitHub Actions runners on AWS EC2, there’s a critical timing vulnerability you need to know about.

Latest Articles

Case Studies

From Engineering to Enterprise Security: How a Renowned Automotive Business Closed Critical Gaps with OnSecurity

Secure and Streamlined: Why Countingup Chooses OnSecurity for Annual Testing

Why Early-Stage Security Testing Builds Client Trust

Driving Secure Growth Through Seamless Testing