NTA Monitor

Latest News

Will IE6 be the next NT4?

1st October 2009 All penetration testers will remember the long tail of Windows NT 4.0, and how this operating system continued to be used long past the point when security updates stopped at the end of 2004. For many years the presence of an unpatchable NT4 server was a common issue in a penetration test report, and it is only now, almost five years after security support ended, that finding an NT4 system on a network is becoming a rare event. Read More

One in four web applications susceptible to high risk security flaws

7th September 2009 NTA Monitor has reported a 10% increase in the total number of web applications found to have at least one high-risk security issue... Read More

Organisations facing a changing threat landscape

20th July 2009 According to NTA Monitor's 2009 Annual Security Report, the average number of Internet security vulnerabilities is on the rise... Read More

The Return of the Insider Threat

1st July 2009 When NTA started security testing twelve years ago, the main focus was on the insider threat. There were many reports with statistics showing that most security breaches were due to insiders. By contrast there was very little focus on the external threat via Internet and third-party network links. Back then many companies did not even have a firewall. Read More

NTA's internal security services 

Network Architecture Test

The Network Architecture Test service provides an examination of networks and systems from a variety of internal perspectives, to identify any security weaknesses that may exist. Testing is flexible, with options including the testing of a defined set of systems or the identification and testing of all visible systems within a network segment.

Go to the top of the page

Network Architecture Audit

The Network Architecture Audit provides a detailed security assessment of the design and configuration of key perimeter systems in order to identify any security weaknesses that may exist. The service can then range from the examination of a single server to a full audit of all systems on the network perimeter, according to customer requirements.

Go to the top of the page

Desktop Security Review

NTA would examine the operating system installed on the desktop for areas such as patch updates, vulnerability of standard applications such as Internet Explorer, assessment of any client firewall parameters and password authentication.

Go to the top of the page

Database Test

Database testing would normally be performed onsite and would typically include issues such as vulnerabilities associated with the software version, security patches, weak passwords, permissions, authentication methods and server evaluations.

The service covers Oracle, MS-SQL and other database types such as Open Source databases and DB2.

Go to the top of the page

Physical Security Review

This service would involve NTA conducting an audit of the server room, looking at access control, disaster prevention, continuity capabilities, high availability and fault tolerance, logging and monitoring, incident response, the organisation and layout of the room and other aspects that may impact on security.

Go to the top of the page

IT Health CHECK

The IT Health Check Service, or CHECK, was developed to enhance the availability and quality of the IT Health Check services that are provided to government in line with HMG policy. Companies belonging to CHECK are measured against high standards set by CESG. IT Health Checks identify vulnerabilities in IT systems and networks which may compromise the confidentiality, integrity or availability of information held on that IT system.

NTA is a founder member of the CHECK scheme and has continually maintained the highest 'Green' level of accreditation. Please contact NTA to discuss your IT Health Check requirements.