Guest Post: KnowBe4 Expert Tips: Securing Employee Identities for Identity Management Day 2025

Posted in Commentary with tags on April 9, 2025 by itnerd

This week the industry celebrates Identity Management Day on the 8th of April, a crucial reminder for organizations to prioritize the security of their employees’ digital identities. 

We live in a time where deepfakes, synthetic identities, and sophisticated cyberattacks are rife, which makes safeguarding credentials and personal information more critical than ever. 

With people remaining the most targeted attack vector, and social engineering attacks including phishing responsible for 70% to 90% of all breaches, KnowBe4’s security awareness experts share their top tips and advice to help organizations safeguard against the theft of their employees’ digital identities. 

Anna Collard, SVP of content strategy & security awareness advocate

  • Cultivate a Zero Trust Mindset: Never trust, always verify, even when communication comes from seemingly familiar contacts.
  • Phishing-resistant MFA: Mandate the use of multi-factor authentication (MFA). Supplement this with additional layers of security, like biometrics (fingerprint, facial recognition) or contextual risk analysis (location, device health, time of access).
  • Security Awareness Training: Conduct regular security awareness training to educate employees on the tactics used in social engineering attacks. This includes recognising phishing emails, smishing (SMS phishing), vishing (voice phishing), and other phishing and social engineering techniques.
  • Mindfulness. “Stop, Breathe, Question” Technique: Teach employees to pause, take a breath, and question the legitimacy of requests before clicking on links, opening attachments, or approving access.

Javvad Malik, lead security awareness advocate

  • Prioritize Security and Usability: Implement a user-centric approach to security that ensures all employees can easily and securely access the resources they need, while maintaining the confidentiality, integrity, and availability of sensitive data. This involves streamlining authentication processes, minimizing friction, and providing clear instructions to guide users through security protocols.
  • Easy-to-Understand Security Measures: Educate employees on the practical benefits of security measures, emphasizing how they protect both personal and organizational data. Use clear and concise language, relatable examples, and interactive elements to engage users and cultivate a strong security culture.
  • Continuous Authentication: Implement advanced authentication mechanisms that continuously verify users based on their behavior patterns, like typing speed, mouse movements, and location data. This helps to detect and prevent unauthorized access, even if login credentials have been compromised.
  • Self-Service Capabilities: Empower users with self-service capabilities such as self-service portals that enable employees to do things like manage their accounts, reset passwords etc. This reduces delays and frustration, improves user satisfaction, and ensures that all users can maintain access to critical resources.

Martin Kraemer, security awareness advocate

  • Share On a Need-To-Know Basis: Uploading personal documents like passports online has become increasingly common for various services like opening a bank account. While this practice can be convenient, it’s essential to exercise caution. Only share sensitive information when absolutely necessary and with legitimate parties. Always verify the legitimacy of the request and the organization before sharing any personal data. If you are asked for sensitive information without a clear and valid reason, or if something feels suspicious, don’t share it. 
  • Your Online Behavior is Monitored: Social media platforms and other online services track your online behavior to create detailed profiles. These profiles gather your behavior, interests, and preferences, which can then be used for targeted advertising or other purposes. If you are uncomfortable with others knowing about your online activity, be mindful of your actions. Consider adjusting your privacy settings, limiting the information you share, and being selective about the websites and services you use. Remember that your digital footprint can have long-lasting consequences.

James McQuiggan, security awareness advocate

  • Empower Employees to Report: Many employees hesitate to report suspicious logins, unexpected MFA prompts, or phishing attempts due to fear of blame, unclear processes, or negative past experiences with IT support. It’s important to foster a security culture where prompt reporting is rewarded, not reprimanded, and to integrate user-friendly reporting mechanisms, for example one-click buttons, and SSO (single sign-on) portals. Ensure the process for reporting phishing, credential misuse, or MFA fatigue is simple, fast, and judgment-free.
  • Post-Incident Response: Use incident reviews as learning opportunities rather than blame sessions. Ensure support teams respond quickly to reported incidents to build user trust.
  • IT and Cybersecurity Teams: Stay informed about Initial Access Brokers (IABs) and Stealer Malware trends. Monitor underground forums and markets for exposed corporate credentials and for insights into attacker tools, techniques, and procedures (TTPs).
  • Governance, Risk Management, and Compliance: Establish a process for regularly collecting, tagging, and analyzing stealer logs to identify exposed employee credentials (especially those with saved browser sessions or cookies). Share insights with IT and cybersecurity teams to prioritize high-risk cases.
  • Threat Intel Teams: Align findings with MITRE ATT&CK techniques (e.g., T1556, T1539) to enhance defensive strategies.

Erich Kron, security awareness advocate

  • Do not reuse passwords: Credential stuffing attacks use automated tools and stolen login information to log into accounts. Reusing passwords across multiple platforms makes employees and organizations vulnerable because if one account is compromised, all accounts using the same password are compromised as well.  

Roger A. Grimes, data-driven defense evangelist

  • Phishing-Resistant MFA: This is the most secure option, as it protects against common social engineering attacks like phishing scams. Examples include hardware security keys and biometrics like fingerprint or facial recognition. These methods require something you have (the hardware key) or something you are (your biometrics), making it much harder for attackers to impersonate employees.
  • Any MFA: If phishing-resistant MFA is not feasible, any MFA is better than none. Examples include SMS-based authentication, time-based one-time passwords (TOTP) generated by an app, and push notifications to a trusted device. While not as secure as phishing-resistant MFA, these methods still add an extra layer of protection to your accounts.
  • Use a Password Manager: Use a reputable password manager to create and manage strong, unique passwords for every site and service. Password managers generate complex passwords that are nearly impossible to guess, and they store them securely so you don’t have to remember them all. Many password managers also offer features like autofill and password sharing, which can save time and improve your security.
  • Strong, Unique Passwords: If you can’t use a password manager, create strong passwords or passphrases that are at least 20 characters long. A strong password should include a mix of uppercase and lowercase letters, numbers, and symbols. Avoid using easily guessable information like your name, birthdate, or pet’s name. Most importantly, never reuse passwords across different sites or services.

By implementing these strategies, organizations can significantly reduce the risk of identity theft, credential compromise, and subsequent phishing and social engineering attacks, ultimately protecting their employees and their valuable data. 

Leave a comment »

Research reveals risk of predators grooming women to access their children

Posted in Commentary with tags on April 9, 2025 by itnerd

Women looking for love online are being warned of a sinister side to dating apps, with new evidence that abusers may try to groom them to gain access to their children. 

Research by Childlight Global Child Safety Institute finds men who sexually offend against children are nearly four times more likely to use dating sites than non-offenders. 

The unit, hosted by the University of Edinburgh and University of New South Wales, found nearly two thirds (66%) of men who sexually offended against children used dating platforms – and over one in five (22%) used them daily. 

The report is part of a broader investigation into the multi-billion-dollar industry of child sexual exploitation and abuse, which financially benefits perpetrators, organised crime and even mainstream companies.

While Childlight warns that sexual exploitation and abuse of children has become a pandemic, affecting over 300 million every year, it says education, legislation and technological measures can help prevent it. 

Its findings, based on a survey of about 5,000 men in Australia, the UK and US, represent the latest evidence of the risk of dating site misuse by people who sexually offend against children. 

It follows a separate recent survey by the Australian Institute of Criminology that found 12% of dating apps users received requests to facilitate child sexual exploitation and abuse – often related to their own children. 

Recent high-profile cases include Scottish lorry driver Paul Stewart who manipulated single mothers via dating apps to gain access to their children for sexual abuse. He was jailed for over three years last December. 

Around 381 million people use dating apps like Tinder, according to Statista. 

The survey of 5,000 men found 11.5% admitted having sexual feelings towards children, while 11% confessed to sexual offences against minors.  

Most dating sites do not require new users to provide evidence of their identity. Salter recommends user verification processes, like mandatory ID checks, and tools to detect predatory behaviours like grooming language or suspicious messaging patterns. 

Childlight’s research also reveals that mainstream companies profit from and perpetuate the global trade in technology-facilitated sexual exploitation and abuse of children (CSEA). They include payment transfer firms and social media platforms where illegal child sexual abuse images are present and where abuse-related traffic can increase advertising revenues.

More at childlight.org

Leave a comment »

US Regulator OCC Says Executives’ Emails Were Hacked 

Posted in Commentary with tags on April 9, 2025 by itnerd

It is being reported that the emails of executives and other employees of the U.S. Treasury Department’s Office of the Comptroller of the Currency were hacked with the agency blaming longstanding vulnerabilities for the breach.

The breach involved unauthorized access to highly sensitive information relating to the financial condition of federally regulated financial institutions.

Erich Kron, security awareness advocate at cybersecurity company KnowBe4 had this comment:

“It’s always a dangerous situation when bad actors get into legitimate email accounts as these accounts carry with them a level of trust that is not present in spoofed emails. 

In many cases, bad actors will piggyback on previous conversations with others in an attempt to get the target to open infected documents or take actions that benefit the attackers. This is much easier for them to do if they are using a previous email correspondence with the victim because people are naturally less skeptical when receiving a message from someone they have previously communicated with.

It’s important that as part of a human risk management plan, employees are taught to always be careful when handling file attachments or unexpected requests, even if they come from a source they have previously communicated with. If in doubt, the request can be confirmed through an alternative form of communication such as a phone call or text message.”

The human element in making an organization secure is a key point. If you don’t have people who have the awareness to spot threats, you’re guaranteed to get pwned.

Leave a comment »

Radiant Logic Announces Strategic Growth Investment from Ridgeview Partners

Posted in Commentary with tags on April 9, 2025 by itnerd

 Radiant Logic today announced a strategic growth investment from Ridgeview Partners, a growth-oriented technology private equity firm. Upon completion of the transaction, Ridgeview will join existing investor TA Associates to support Radiant Logic’s continued global expansion and innovation in the ISPM space.

Radiant Logic is redefining enterprise security by addressing one of the largest attack surfaces—identity. The RadiantOne platform empowers the world’s largest commercial and government organizations to strengthen their security posture and solve the most complex identity challenges at scale. By leveraging the most accurate and unified data foundation, the platform provides real-time visibility into identity ecosystems and enables proactive remediation.

Ridgeview’s investment follows a period of transformative growth and innovation for Radiant Logic. Since partnering with TA in 2021, the Company has achieved significant milestones, including launching RadiantOne AI—a data lake-powered AI engine—and AIDA—a generative AI assistant that automates identity security posture management. These innovations have set new benchmarks for scalability and efficiency in enterprise identity security. Additionally, the strategic acquisition of Brainwave GRC expanded Radiant Logic’s capabilities into identity analytics, enhancing governance and compliance for its customers.

Deutsche Bank acted as financial advisor and Kirkland & Ellis served as legal advisor to Radiant Logic. PJT Park Hill acted as financial advisor and Sidley Austin LLP served as legal advisor to Ridgeview.

Leave a comment »

Arcitecta Mediaflux Named a 2025-2026 TOP 5 Cybersecure 10PB+ NAS Solution in DCIG Global Edition Report

Posted in Commentary with tags on April 9, 2025 by itnerd

Arcitecta, a creative and innovative data management software company, today announced that research firm DCIG has selected Arcitecta’s Mediaflux appliance as one of 2025-26 DCIG TOP 5 Cybersecure 10PB+ NAS Solutions in a Global Edition Report. The report provides “organizations with guidance on the best cybersecure 10PB+ NAS solutions for deployment today,” based on DCIG’s evaluation of over 300 features within specific categories. These categories included architecture, cyber resilience, data protection, efficiency, performance management, performance resources, product management, and technical service and support.

DCIG reports that network-attached storage (NAS) solutions remain a practical and widely adopted choice for organizations of all sizes due to their ease of setup, configuration and deployment. With support for NFS and SMB protocols, NAS systems are well-understood and continue to grow in popularity. According to Fortune Business Insights, the global NAS market is projected to grow from $40.3 billion in 2024 to nearly $130 billion by 2032, signaling strong momentum for these scalable, file-based storage solutions.

As data volumes rapidly increase—driven by more devices, applications and the growing use of high-resolution media— and organizations expand their NAS deployments, DCIG notes the growing ubiquity of NAS solutions also makes them prime targets for ransomware attacks, highlighting the need for robust data protection strategies.

Mediaflux Point in Time for Near-Zero RPOs and RTOs

Arcitecta’s Mediaflux data management platform includes a revolutionary new backup and recovery approach that redefines data resilience at scale. Mediaflux Point in Time eliminates the cost and business impact of lost or corrupted data and provides self-service data recovery. It allows users or IT administrators to return to any point in time to recover needed files – even in a cyberattack where files have been encrypted. It provides a strong first line of defense against crypto locking with the ability to roll back ransomware attacks, enabling the complete and immediate recovery of data – a recovery time objective (RTO) of zero – and virtually no downtime with a recovery point objective (RPO) near zero, typically within milliseconds.

The Mediaflux Difference

Mediaflux offers an advanced, comprehensive data management platform that can operate on a massive scale to help organizations better manage data throughout its entire lifecycle. Its suite of solutions enables organizations to organize, search, share and preserve their data well into the future for lasting value.

With solutions such as Mediaflux Multi-Site, Mediaflux Edge and Mediaflux Burst, users within geographically dispersed workforces collaborate more efficiently, spend far less time waiting for data when needed, and avoid unnecessary investments in compute resources when usage times peak. As part of Arcitecta’s evolving ecosystem of advanced data management capabilities, these solutions ensure data is moved to the right location for the right user at the right time, accelerating innovation, discoveries and business outcomes.

Leave a comment »

Ericsson unveils wireless-first branch architecture to deliver agile, secure connectivity for AI-led enterprise innovation

Posted in Commentary with tags on April 9, 2025 by itnerd

Ericsson today announced the launch of its new wireless-first architecture that brings agility and scale to branch networking. Designed to support higher-bandwidth, business-critical AI-powered operations, it combines diverse WAN connectivity, LAN switching, network slicing, and zero-trust through unified management to deliver scalable and secure high-performance branch networking. From virtual experts in insurance offices to computer vision applications in remote healthcare clinics, distributed sites increasingly rely on always-on connectivity to support business-critical operations and deliver modern customer experiences.

According to IDC, by 2026, 90 per cent of enterprises will integrate generative AI into their connectivity strategy – underscoring the growing need for secure, scalable, and easily managed networks. As 5G Advanced gains momentum, enterprises are moving beyond traditional best-effort services and seeking predictable performance for business-critical applications through services such as network slicing. Ericsson’s wireless-first branch architecture – combining the Cradlepoint E400, new LAN switches and access points, and NetCloud Manager – provides enterprises with a future-ready connectivity foundation to unlock the full potential of AI-driven innovation.

Key components of Ericsson’s new wireless-first branch architecture include the following:

  • The new Cradlepoint E400 is a next-generation routing and security appliance that serves as the core of the architecture – providing integrated support for 3GPP Release 17 5G, Wi-Fi 7, and LEO satellite WANs to deliver high-performance, scalable connectivity from virtually anywhere.
  • New Cradlepoint LAN switches and access points, which extend LAN capacity and are unified under Ericsson NetCloud Manager to augment LAN solutions from existing technical alliance partner solutions.
  • Ericsson NetCloud Manager additionally provides centralized control and provisioning of embedded eSIM and dual-SIM capabilities, enabling remote profile configuration, seamless carrier switching, and streamlined deployment for lean IT teams.
  • Ericsson NetCloud SASE, SD-WAN, and 5G network slicing capabilities which enhance reliable performance and security across diverse WAN connections. While SD-WAN, link bonding and SASE optimize traffic across wired, cellular, and satellite links, network slicing delivers isolated, secure 5G slices with use-case specific parameters for business-critical applications.

To fully unlock AI’s potential, lean IT teams must be able to deliver modernized branch operations that support AI applications with scalable, secure, and resilient wireless connectivity. Ericsson’s wireless-first architecture – powered by the E400, NetCloud Manager, and LAN infrastructure – gives IT teams and carriers the flexibility, performance, and security needed to deploy and manage AI-ready connectivity across distributed branch sites.

All products are available immediately. For more information on the Ericsson Cradlepoint E400 routing and security appliances visit here; for details about Ericsson Cradlepoint LAN switches visit here; and information on Wi-Fi access points, visit here.

Leave a comment »

iOS Photo Vault app leaked user data in real time 

Posted in Commentary with tags on April 9, 2025 by itnerd

The iOS app Photo Vault, designed to protect private content, has leaked user data in real time due to a misconfigured, passwordless Firebase database.

What was exposed:

  • Metadata from 17,000 photo albums
  • 56 password entries
  • 81 private notes, some labeled “passwords”

Because of this flaw, attackers could watch as users uploaded content, and potentially use that data to hijack accounts or infiltrate linked services like Facebook or Dropbox.

You can read the full Cybernews investigation here.

Leave a comment »

Nine out of Ten Americans Concerned About Cybercriminals Leveraging AI

Posted in Commentary with tags on April 9, 2025 by itnerd

Iris® Powered by Generali (“Iris”) today released the findings of its inaugural Identity & Cybersecurity Concerns Survey, which polls consumers on their digital security practices, as well as fraud resolution experiences if previously victimized. The survey also asked respondents to identify their top concerns surrounding ID theft and areas where they feel most vulnerable, building off the findings of Iris’ annual Holiday Shopping ID Theft survey which the company has conducted over the past 8 years.

When questioned about their online security habits, only 3 in 10 respondents said they employed all recommended cybersecurity recommendations. And this is in spite of deep concerns related to a breach of their personal devices, compromised passwords, and having their home title or deed stolen. Respondents overwhelmingly identified AI when considering threats to their personal information, with 91% listing it as a concern. Women were disproportionately more likely to see AI as a threat, with 41% of females responding that they are extremely concerned compared with 32% of male participants. 

The survey also asked respondents to identify life events that they believed made them most vulnerable to identity theft, with 33% of participants listing “moving to a new location” as posing the greatest risk. This was followed by “starting a new business” (31%) and “buying or selling a home” (30%). Notably, Baby Boomer and Gen X participants were far more likely to identify buying a home as a threat (35% and 36% respectively) than Millennials or Gen Z respondents (25% and 26% respectively), which aligns with recent studies conducted by financial institutions like CitiBankthat show most younger Americans do not anticipate they will own a home in their lifetime.

Additionally, when asked who they would reach out to if notified of a data breach, most respondents (46%) indicated they would reach out to their bank or credit card company for support – ahead of just 19% who said they would reach out to their cybersecurity or identity protection provider. 

For those who had been a victim of fraud or identity theft in the past 2 years, the survey found that 93% of fraud victims say the resolution process caused them stress, with more than 1 in 2 (52%) saying it was more stress than they ever experienced or significant stress. Only 5% of respondents indicated that an identity protection provider helped them achieve a resolution. At the same time, a majority ofconsumers (66%) said they would be interested in purchasing cybersecurity protection offerings from a bank or credit card company if offered.

Survey Methodology:

This survey was conducted via an Online CARAVAN®survey conducted by Big Village among a sample of 1,010 adults ages 18 and older, live from March 12 through March 14, 2025. Respondents were voluntary members of an online panel weighted by five variables – age, gender, geographic region, race, and education – using data from the U.S. Census Bureau to verify the accuracy of the results. The generations were defined by the following ages: Gen Z (18-27), Millennials (28-43), Gen X (44-59), and Baby Boomers (60-78).

The full results of the survey, which includes additional data about cybersecurity practices, threats top of mind to consumers, and fraud resolution experiences, can be found at https://www.irisidentityprotection.com/icc-2025   

Leave a comment »

Guest Post: Why Data Sovereignty Matters More Than You Think – For Every Business

Posted in Commentary with tags on April 9, 2025 by itnerd

By Roger Brulotte, CEO, Leaseweb Canada

Data can zip across borders and into the cloud in the blink of an eye. But as convenient as that is, it’s also raising some important questions – especially around something called data sovereignty. Sounds like something only governments or giant corporations need to worry about, right? Not quite. This issue actually touches every business, no matter the size. And if you’re operating in Canada or working with Canadian customers, it’s something you really can’t afford to ignore.

So, what’s data sovereignty all about? In plain terms, it means your data is bound by the laws of the country where it actually lives. If that’s Canada, then your data needs to follow Canadian rules, specifically, a law called PIPEDA (yep, it’s a mouthful: the Personal Information Protection and Electronic Documents Act). This law lays out how businesses are supposed to collect, use, and protect personal information. For any company operating in Canada, or even just working with Canadian customers, keeping data on Canadian soil helps make sure it’s covered by Canadian protections, not someone else’s rules. It’s really about keeping control and keeping things simple.

Busting the Big Business Myth

A lot of people think data sovereignty is only something big corporations need to worry about. And yes, those companies usually have full teams dedicated to legal and data compliance. But small and mid-sized businesses (SMBs) face their own set of challenges. In fact, data sovereignty can be even more important for them. Why? Because SMBs often depend on outside cloud providers and might not have the in-house expertise to untangle all the rules around storing data across borders. That makes it even more important to know where your data is – and who has access to it.

If you’re an SMB, ask yourself: Do you know where your customer data is being stored? Who might have jurisdiction over it? If the answer is “not really,” it might be time to dig deeper.

What to Look for in a Cloud Provider

When you’re picking a cloud or infrastructure provider, it’s super easy to get swept up in the big, shiny certifications… things like ISO/IEC 27001 or SOC 2. And don’t get us wrong, those are good signs. They show that a provider is thinking about privacy and security. But if you really want to know your data is safe, those logos shouldn’t be the end of the conversation.

What really matters is this: Can your provider give you a straight answer about where your data lives?

Not a vague “we follow best practices” kind of answer, but something specific. Can they tell you if your data is sitting in a server just outside Toronto, or floating around in a data center overseas? Can they walk you through who has access to it, and how they’re keeping it locked down, without slipping into a bunch of tech-speak that leaves you more confused than reassured?

If the answers feel fuzzy or dodgy, trust your gut. It’s okay to press for clarity.

Also, take a minute to consider the bigger picture. Does this provider actually have data centers in Canada? Who owns the company behind the scenes? And what happens if there’s a political shakeup in the country where your data is stored? These might sound like “worst-case-scenario” questions, but they’re worth asking because they help you stay in control no matter what.

You don’t need to be an IT expert or a legal pro to have this conversation. You just need to care about protecting your business and the people who trust you with their information. Asking where your data lives and how it’s being handled isn’t overthinking. It’s smart, responsible, and exactly what today’s leaders should be doing.

Why Cloud Repatriation is on the Rise

Lately, a lot of companies have been hitting pause and rethinking their cloud game. More and more, we’re seeing a shift toward what’s called cloud repatriation, which is just a fancy way of saying they’re pulling some of their data and apps out of the big public cloud and bringing them back home. Sometimes that means going fully in-house, sometimes it’s a mix, a hybrid setup. Why the change? It usually comes down to wanting more control, clearer visibility, and honestly, fewer surprise bills.

Public cloud solutions are great for scalability, but they can also lead to surprises: unexpected fees, limited control, and compliance headaches. Hybrid models, on the other hand, offer a balance – keeping sensitive data local while taking advantage of cloud flexibility where it makes sense.

According to a recent IDC report, nearly 80% of businesses are planning to bring at least some of their data back from the public cloud in the next year. That’s not just a trend… it’s a sign that companies are getting more intentional about where their data lives. It’s a smart, strategic shift toward setups that give them more control, better compliance, and fewer surprises.

Industries That Care (and Why You Should Too)

It’s true that certain industries – like finance, healthcare, and government – have more stringent compliance requirements. But frankly, any organization that collects personal data should care about where that data lives. Data sovereignty helps protect that information from being accessed or compromised due to international politics, provider shutdowns, or legal loopholes.

In sectors like healthcare, the bar is even higher. In Canada, for example, patient records must remain within the country, regardless of whether the institution is public or private. It’s about trust, compliance, and ethics – all rolled into one.

Parting Thoughts…

At the end of the day, data sovereignty isn’t just something for the IT folks to deal with… it’s far bigger than that. Business leaders need to be in the loop too. After all, knowing where your data lives, who can get to it, and how it’s being protected isn’t just some technical detail. It’s about trust, staying compliant, and making sure your business can keep running smoothly – no matter what.

With regulations tightening and digital risks popping up left and right, the companies that come out ahead are the ones asking the smart questions before diving into the cloud. It’s not about being scared… it’s about being smart, prepared, and in the driver’s seat.

Leave a comment »

HellCat Ransomware Hits 4 Firms Via Jira Credentials from Infostealer Logs

Posted in Commentary with tags on April 8, 2025 by itnerd

The HellCat ransomware group has once again demonstrated its relentless focus on exploiting Jira credentials stolen through infostealer malware by targeting four new organizations.

You can get the details here: https://www.infostealers.com/article/hellcat-ransomware-group-strikes-again-four-new-victims-breached-via-jira-credentials-from-infostealer-logs/

Jim Routh, Chief Trust Officer at Saviynt had the following comment:

“This series of ransomware attacks originated from an increasingly common root cause, passwords to cloud accounts essential for software engineering (like Jira), are compromised and then sold to other criminals.

Enterprises have an opportunity (and perhaps an obligation) to treat enterprise users of cloud accounts critical to software engineering in the same way as privileged users. Continuous identity validation and risk scoring are essential for enterprise identity posture management.” 

I’ll add to that some form of passwordless solution might be helpful here. Because an infostealer can’t steal a password that doesn’t exist.

Leave a comment »

« Older Entries
Newer Entries »