Dos And Dont's For Privileged Accounts
All tagged MFA
Four Critical Cybersecurity Predictions for 2018
One fact will hold true in 2018, no matter what organizations do: cybercriminals will continue to reinvest their profits into building sustainable but illegal businesses. The underlying economics of cybercrime continue to give massive financial incentives to the attackers. Organizations should retaliate by adopting a “keeping up with the Joneses” mentality so that they’re always slightly more secure than organizations in the same market or vertical.
We made it to 20 episodes! I know some people don't like it when you talk about milestones like this, but I'm doubly excited for this one because I finally get to publish my interview with Kayne McGladrey from Integral Partners. I know many of your have been scrambling to finish up the quarter or fiscal year, depending on your industry, so hopefully this will give you an opportunity to sit back, relax, and listen to the excellent information that Kayne provided.
4 Ways Private/Hybrid Clouds Improve Business Outcomes
CIO Online interviewed me for this article about authentication and authorization for hybrid and private clouds.
Solving the Challenge of Multi-Factor Authentication Adoption
I was interviewed by Network World for this piece on MFA.
The Truth-Bias and How It Affects IAM, IGA and PAM Programs
People are only able to detect lies about 50% of the time, but we tend to trust people we know when they request access by email. What does this mean for IAM, IGA, and PAM programs?
Launch your own privileged insider attacks for under $1,500 USD
This article will examine the costs and budgetary considerations for a new bad actor, lacking global resources, to set up a single privileged identity theft campaign to be able to launch insider attacks. The costs shown will assume corporate targets in the greater Seattle metropolitan area. This article will also briefly examine countermeasures.
The good news is that it is still possible to become an evil villain for an initial investment of under $1,500 USD, despite rising labor costs.
@Pebble is Shutting Down. Can They Take Two-Factor Authentication for #Cybersecurity With Them?
However, the biggest utility for my Pebble was two-factor authentication from my bank. My bank has had a somewhat tortured Consumer Identity and Access Management rollout over the years. They initially had single-factor authentication – a username and password. They briefly flirted with pictures, until they realized the Internet has an insatiable love of cats. They then deployed Knowledge-Based Authentication, safe in the knowledge that no-one would post their first spouse’s name, the name of their elementary school, and their favorite band on Facebook. Thus, they reluctantly deployed SMS-based two-factor authentication.