Red team testing is somewhat intrusive by nature, as it involves breaking into companies - albeit at their request - to help them improve their security. Red teamers must bluff their way past receptionists and hack into employee computers, things that would put anyone else in a lot of trouble. At what point do red teaming activities cross the line into being unethical, or even criminal? F-Secure's veteran red teamer Tom Van de Wiele stopped by to share what a red teamer is not willing to do in the name of security, why cyber security experts need a sense of ethics, and how red teamers and companies alike can make sure that their own ethical concerns are addressed.

Links:

Episode 41 transcript

The F-Secure Guide to Rainbow Teaming

Podden och tillhörande omslagsbild på den här sidan tillhör WithSecure™. Innehållet i podden är skapat av WithSecure™ och inte av, eller tillsammans med, Poddtoppen.