Why product testing companies are finally upping scrutiny on security