Resources
The Latest Cybersecurity Insights
Explore the latest research, expertise, and frontline innovation from our elite team of OnDefenders.
TikTok U.S. Data Security Names HayStackID and OnDefend as Independent Security Inspector
TikTok U.S. Data Security Inc. (USDS) is further enhancing the security of TikTok users’ data and protection against cybersecurity threats by appointing HaystackID and OnDefend to serve as Independent Security Inspectors (ISIs) for USDS.
Read More-
Terin Williams Joins OnDefend as Associate Program Director of Strategic Policy Initiatives
OnDefend is proud to welcome Terin Williams as Associate Program Director of Strategic Policy Initiatives.
Read More -
Why External Pentests Aren’t Enough: The Case for Internal Testing
Most companies run external penetration tests to meet compliance requirements, but those only tell part of the story.In this post, we explain the difference between external and internal penetration testing, why both matter, and what we see in real-world environments.
Read More -
Tim Tomes Joins OnDefend as Director of Training and Programs
OnDefend is proud to welcome Tim Tomes as the Director of Training and Programs.
Read More -
Penetration Testing Isn’t Enough: Validate Detection & Response with BlindSPOT
Penetration testing identifies vulnerabilities, but it doesn’t confirm whether your detection tools and response teams will stop real threats. Learn how combining pentesting with continuous threat detection and response validation strengthens your cybersecurity posture.
Read More -
Security Control Validation: Why Testing Once Isn’t Enough to Stop Threats
Traditional security assessments and out-of-the-box tool configurations aren’t enough to protect against adversaries. Organizations need continuous security control validation — real, ongoing testing to ensure their defenses are detecting and stopping threats before damage is done.
Read More -
Beyond MITRE ATT&CK Coverage: How Proactive Testing Turns Frameworks Into Real Defense
Most security teams talk about MITRE ATT&CK coverage. But attackers don’t care about your roadmap. Here’s how OnDefend combines penetration testing, attack simulations, and tabletop exercises to proactively validate security controls and prepare teams for real-world threats.
Read More -
Tackling the Ransomware Pandemic: Healthcare Security Leaders Team Up with OnDefend for a New Defensive Approach
A collaboration with hospital systems and their leaders, OnDefend's new Ransomware Defense Validation service reimagines defense strategies through proactive and continuous security control validation.
Read More -
OnDefend & BlindSPOT Latest Features, Updates, & News: March 2025
Discover the latest updates from OnDefend and BlindSPOT, including new features like Project Level Security Tool Log Upload and learn more about how Ransomware Defense Validation (RDV) is helping organizations identify security control failures.
Read More -
Why Secure Email Gateways Fail (and What You Can Do About It)
Secure Email Gateways (SEGs) are supposed to stop phishing and ransomware, but attackers still find ways through. Learn why SEGs fail, how misconfigurations leave gaps, and why continuous testing is the key to better email security.
Read More
