Accountability, Digital transformation and Passwords

Companies need CASBs now more than ever — to help secure ‘digital transformation’

The Last Watchdog

JULY 16, 2018

While Shadow IT has been largely quelled, the core dynamic that started all this fuss – eager humans scrambling to use the latest, greatest cloud-enabled services – remains a major security issue, one that now connects directly to digital transformation. A synopsis of key takeaways: Misconfigurations.

Digital transformation

Digital transformation Encryption Accountability Risk

MY TAKE: Businesses gravitate to ‘passwordless’ authentication — widespread consumer use up next

The Last Watchdog

MAY 24, 2022

This is one giant leap towards getting rid of passwords entirely. Excising passwords as the security linchpin to digital services is long, long overdue. Password abuse at scale arose shortly after the decision got made in the 1990s to make shared secrets the basis for securing digital connections.

Authentication

Authentication Passwords Banking Digital transformation

MY TAKE: A path for SMBs to achieve security maturity: start small controlling privileged accounts

The Last Watchdog

JUNE 23, 2021

The challenge of embracing digital transformation while also quelling the accompanying cyber risks has never been greater for small- and mid-sized businesses. This applies to established companies migrating to cloud infrastructure as well as to digital native startups. Password concierge.

Accountability

Accountability Passwords Hacking Cyber Risk

Cybersecurity Resolutions for 2025

IT Security Guru

JANUARY 9, 2025

Cybercriminals weaponise AI to speed up and scale traditional attack tactics, such as phishing and password cracking, while also creating entirely new forms of cyber threats. Key elements in protecting against AI-driven threats include timely software updates, network security improvements and strong password policies.

Cybersecurity

Cybersecurity Cyber threats Architecture Digital transformation

MY TAKE: How ‘credential stuffing’ and ‘account takeovers’ are leveraging Big Data, automation

The Last Watchdog

OCTOBER 16, 2019

A pair of malicious activities have become a stunning example of digital transformation – unfortunately on the darknet. Using this technique, the criminal collects your leaked credentials (usually stolen in a data breach) and then applies them to a host of other accounts, hoping they unlock more. Hackers count on it.

Big data

Big data Accountability Passwords Digital transformation

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets. By eliminating stored credentials and biometrics, Badge ensures there is nothing to breach.

Authentication

Authentication Retail Healthcare Manufacturing

Q&A: How your typing and screen swiping nuances can verify your identity

The Last Watchdog

AUGUST 6, 2018

Compromised accounts came into play in data breaches of Uber, Tesla, Gemalto, Aviva, Equifax and many others. And with “digital transformation” accelerating, there are so many more weakly-secured login accounts just waiting to be maliciously manipulated. The good news is that this is a solvable problem.

Digital transformation

Digital transformation Passwords Data breaches Authentication

Phishing-Resistant MFA: Why FIDO is Essential

Thales Cloud Protection & Licensing

MAY 7, 2025

Traditional Multi-Factor Authentication (MFA), while a step up from password-only security, is no longer enough to fight modern phishing schemes. Todays threat actors use AI to craft compelling phishing campaigns and advanced social engineering tactics to slip past MFA, resulting in credential theft and account takeovers.

Phishing

Phishing Authentication Passwords Social Engineering

Level Up Your Security: Embrace Passkeys and Phishing-Resistant 2FA

Thales Cloud Protection & Licensing

JANUARY 31, 2025

Level Up Your Security: Embrace Passkeys and Phishing-Resistant 2FA andrew.gertz@t Fri, 01/31/2025 - 15:17 Celebrate Change Your Password Day and 2FA Day by embracing passkeys and phishing-resistant 2FA. Redefining Change Your Password Day Well start with Change Your Password Day because, frankly, its a little complicated.

Phishing

Phishing Passwords Password Management Authentication

Breaking the Barriers to a Password-Free Life in Enterprise: Meet SafeNet eToken Fusion NFC PIV security key

Thales Cloud Protection & Licensing

MARCH 12, 2025

Breaking the Barriers to a Password-Free Life in Enterprise: Meet SafeNet eToken Fusion NFC PIV security key madhav Thu, 03/13/2025 - 06:46 As large organizations increasingly shift towards passwordless solutions, the benefits are clear: enhanced user experience, improved security, and significant cost savings.

Passwords

Passwords Authentication Digital transformation Government

Credential Stuffing Fraud Attacks Make up 5% of All Digital Traffic

Security Boulevard

AUGUST 5, 2021

Credential stuffing fraud, which refers to automated sifting through volumes of stolen data to arrive at reams of valid username-password matches, continues to provide fraudsters with valid credentials to compromise and abuse these accounts be a successful attack tactic despite increased detection.

Digital transformation

Digital transformation Accountability Passwords

RSAC insights: Why vulnerability management absolutely must shift to a risk-assessment approach

The Last Watchdog

MAY 31, 2022

Advanced VM tools and practices are rapidly emerging to help companies mitigate a sprawling array of security flaws spinning out of digital transformation. Digital transformation has spawned a cascade of nuanced, abstract vulnerabilities – and they’re everywhere. That’s changing — dramatically.

Risk

Risk Digital transformation Software Technology

SHARED INTEL: IT pros gravitate to ‘passwordless’ authentication to improve security, boost agility

The Last Watchdog

APRIL 7, 2021

Meanwhile, 64 percent saw value in improving user experiences and 21 percent said it could help achieve digital transformation. Password abuse emerged as a criminal specialty shortly after the decision got made in the 1990s to jump start the commercial Internet using a security framework built on shared secrets.

Authentication

Authentication Digital transformation Passwords Password Management

NEW TECH: Devolutions’ ‘PAM’ solution helps SMBs deal with rising authentication risks

The Last Watchdog

MARCH 10, 2020

Related : SMBs are ill-equipped to deal with cyber threats Without a cohesive cybersecurity framework, SMBs are falling further behind as digital transformation, or DX, ramps up. Embracing digital transformation becomes even more of a challenge without a dedicated platform to address vulnerabilities. That’s our goal.”

Authentication

Authentication Risk Digital transformation Passwords

The Role Zero Trust Plays in Combating Privileged Credential Attacks

CyberSecurity Insiders

JUNE 14, 2021

Due to the remote work boom and accelerated digital transformation projects, many of those conversations and exchanges are online. Zero Trust aims to take these privileged accounts off the playing field and implement a least privilege access control model. By Tony Goulding, cybersecurity evangelist, ThycoticCentrify.

Digital transformation

Digital transformation Data breaches Cloud Migration Passwords

Q&A: Here’s why it has become vital for companies to deter ‘machine-identity thieves’

The Last Watchdog

JULY 11, 2018

We’re undergoing digital transformation , ladies and gentlemen. As such, Hudson argues persuasively that the root of the matter comes down to the need for organizations to keep a much closer account of access logons and encryption keys. LW: Can you frame what’s going on with identities when it comes to digital transformation?

Digital transformation

Digital transformation Firewall Mobile Media

NEW TECH: Cequence Security launches platform to shield apps, APIs from malicious botnets

The Last Watchdog

NOVEMBER 13, 2018

The attackers have a vast, pliable attack surface to bombard: essentially all of the externally-facing web apps, mobile apps and API services that organizations are increasingly embracing, in order to stay in step with digital transformation. One of the most intensive uses of criminal botnets is account takeovers.

Digital transformation

Digital transformation Mobile B2C Internet

5 API Vulnerabilities That Get Exploited by Criminals

Security Affairs

NOVEMBER 22, 2022

And as these businesses work towards building robust security strategies, it’s vital that they account for various threat vectors and vulnerabilities. APIs, short for application programming interfaces, have become a common building block for digitally enabled organizations. Today, BOLA accounts for 40% of all API attacks.

Authentication

Authentication Accountability B2B Digital transformation

Solid Data Security: The Foundation of a Safe Digital World

Thales Cloud Protection & Licensing

OCTOBER 16, 2024

According to Imperva’s State of API Security in 2024 report, APIs—the rules allowing software applications to communicate with each other—now account for a staggering 71% of internet traffic. The modern internet's interconnected nature also threatens data security. The result?

DDOS

DDOS Encryption Data breaches Identity Theft

Go Beyond FIDO Standards: Best Practices When Deploying FIDO Security Keys in Enterprise

Thales Cloud Protection & Licensing

FEBRUARY 19, 2025

Go Beyond FIDO Standards: Best Practices When Deploying FIDO Security Keys in Enterprise madhav Thu, 02/20/2025 - 06:22 Initially designed for the consumer market, the FIDO (Fast IDentity Online) standard aims to replace passwords with more secure authentication methods for online services. While recent versions, like FIDO2.1,

Authentication

Authentication Passwords Marketing Risk

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

These criminals are usually after insecure passwords; therefore, the use of modern passwordless authentication methods, like passkeys , is a great way to prevent these scams from happening. Account Takeovers Imagine a burglar not just breaking into your home but changing the locks and assuming your identity.

Retail

Retail Cyber Risk Risk DDOS

NEW TECH: Why it makes more sense for ‘PAM’ tools to manage ‘Activities,’ instead of ‘Access’

The Last Watchdog

APRIL 22, 2020

PAM governs a hierarchy of privileged accounts all tied together in a Windows Active Directory ( AD ) environment. It didn’t take cyber criminals too long to figure out how to subvert PAM and AD – mainly by stealing or spoofing credentials to log on to privileged accounts. But SSO proved to be a boon for intruders, as well.

Accountability

Accountability Authentication Digital transformation Passwords

Identity at a Crossroads: Why Existential Identity Matters

Thales Cloud Protection & Licensing

APRIL 7, 2025

Identity at a Crossroads: Why Existential Identity Matters madhav Tue, 04/08/2025 - 04:31 Imagine waking up one morning to find your digital identity compromised your accounts hijacked, your access revoked, and your data in someone elses hands. But unlike passwords, biometric data cant be changed if stolen. But at what cost?

Authentication

Authentication Identity Theft Digital transformation Passwords

MY TAKE: Poll shows consumers won’t patronize companies that fail to assure ‘digital trust’

The Last Watchdog

DECEMBER 13, 2022

What’s more, 99 percent of the IT pros said they believed their customers would switch to a competitor should they lose trust in the enterprise’s digital security. And nearly half, 47 percent, said they’ve stopped doing business with a company after losing trust in that company’s digital security. Baked-in security.

Internet

Internet Internet Digital transformation Accountability

Identity Innovators at IDLive 2022: Humana, Toyota, US Bank and Others Reveal How AI, Cloud and Zero Trust Aid Digital Transformation

Security Boulevard

MAY 5, 2022

We now expect to have a frictionless experience with companies as they remember our preferences and make it easy to login without re-entering our password every time we need to buy more orange juice or want to order dinner. The way we interact with the companies we buy from has changed dramatically.

Digital transformation

Digital transformation Banking Retail Healthcare

Healthcare Cybersecurity Market Soars: Key Trends and Insights

SecureWorld News

MAY 2, 2025

This surge is driven by a convergence of factorsfrom a spike in ransom ware attacks to the digital transformation of healthcarethat CISOs and healthcare executives must understand and act upon. Digital transformation - cloud and IoT exposure: The healthcare industry's rapid digitization is expanding the attack surface.

Healthcare

Healthcare Marketing Cybersecurity CISO

Breaking Free from Passwords: Passkeys and the Future of Digital Services

Thales Cloud Protection & Licensing

SEPTEMBER 2, 2024

Breaking Free from Passwords: Passkeys and the Future of Digital Services josh.pearson@t… Mon, 09/02/2024 - 15:14 As passkeys offer a more secure and convenient way to authenticate users, it is no surprise that industry experts agree that they will become the standard authentication method used worldwide.

Passwords

Passwords Authentication Social Engineering Phishing

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

The Last Watchdog

MARCH 4, 2019

Turns out it was possible for a threat actor to flood GLIBC with data , take control of it, and then use it as a launch point for stealing passwords, spying on users and attempting to usurp control of other computers. Privilege account credentials are widely available for sale. This is where PowerShell comes back into play.

Hacking

Hacking Energy and Utilities System Administration Accountability

BrandPost: Deconstructing Identity Security

CSO Magazine

MARCH 22, 2023

But many fail to grasp that the digital transformation, remote work, automation, and cloud migration activities of the last few years have turbocharged the number of identities seeking access to data and critical business systems. Most companies now recognize the serious and insidious nature of cybersecurity threats.

Cloud Migration

Cloud Migration Digital transformation Passwords Authentication

As 2-factor authentication falls short, ‘adaptive multi-factor authentication’ goes mainstream

The Last Watchdog

JUNE 28, 2018

Most individuals today are nonplussed when required, under certain circumstances, to retrieve a one-time passcode, pushed out in a text message to their smartphone, and then typing the passcode to gain access to a privileged account. This is what digital transformation is all about.

Authentication

Authentication Digital transformation Mobile Technology

GUEST ESSAY: ‘Initial access brokers’ — IABs — specialize in enabling surreptitious access

The Last Watchdog

DECEMBER 19, 2022

The rise of IABs corresponds with the increase in digital transformation. Early in the COVID-19 pandemic, companies started implementing digital tools at an unprecedented pace. These include: •Using multifactor authentication (MFA) on all accounts. Monitoring the dark web for IAB listings.

Cybercrime

Cybercrime Digital transformation Ransomware Cybersecurity

Digital Environments Engaging in Non-Human Identities Require Separate Data Structures

SecureWorld News

JANUARY 12, 2022

Non-human identities include IoT and mobile devices, digital secrets, service accounts, and social media accounts. Organizations control human and non-human entities accessing digital assets to protect business operations, safeguard data privacy, and ensure regulatory compliance. The 3 non-human identity types.

Accountability

Accountability Digital transformation Passwords Data privacy

CIAM in insurance: A unified, secure user experience with a single login

Thales Cloud Protection & Licensing

MAY 26, 2023

With such a diverse portfolio and digital touchpoints, how can insurers bring their brand and product suite together across channels for a secure, streamlined user experience? This is where digital transformation and CIAM come into play. Adding value to the user experience (a top priority for 59% of insurers) 2.

Insurance

Insurance Digital transformation Authentication Passwords

Microsoft Accidentally Exposes 38TB of Sensitive Data

SecureWorld News

SEPTEMBER 19, 2023

Users were directed to download these models from an Azure Storage URL; however, the misconfigured URL granted unauthorized access to the entire storage account, thus exposing vast amounts of additional private data. After being alerted by Wiz, Microsoft revoked the SAS token , effectively blocking external access to the storage account.

Digital transformation

Digital transformation Data breaches Backups Architecture

5 Things Retailers Should Know About Cybersecurity

Duo's Security Blog

FEBRUARY 16, 2022

Retail’s great “digital transformation” sped up, as did the number of data breaches impacting retail. The 2021 Verizon Data Breach Investigations Report observes passwords caused 89% of web application breaches, either through stolen credentials or brute force attacks, making the protection of credentials a high priority.

Retail

Retail Cybersecurity Data breaches Passwords

SHARED INTEL: APIs hook up new web and mobile apps — and break attack vectors wide open

The Last Watchdog

OCTOBER 29, 2019

APIs are the conduits for moving data to-and-fro in our digitally transformed world. And this doesn’t account for all the private APIs business built and use. With DevOps and API advances steamrolling forward, no one has thought to establish the practice of requiring passwords to authenticate users at the API level.

Mobile

Mobile Digital transformation Data breaches Firewall

News alert: Badge expands availability of ‘Enroll Once and Authenticate on Any Device’ software

The Last Watchdog

MARCH 7, 2024

By eliminating passwords and stored secrets, Badge bolsters Radiant Logic’s extensible identity data platform to accelerate strategic initiatives such as digital transformation, Zero Trust, automated compliance, and data-driven governance. This sets the stage for a more connected and secure online future for everyone.”

Authentication

Authentication Software Digital transformation Marketing

The noodle soup of B2B IAM and third-party identities

Thales Cloud Protection & Licensing

FEBRUARY 25, 2025

It is often implemented through standard Single Sign-On (SSO) protocols, such as SAML or OpenID Connect, to enable authentication across different organizations, without requiring each party to maintain separate user accounts. Strong authentication beyond passwords (e.g., passkeys, FIDO2, biometrics). Does it matter that we cant agree?

B2B

B2B Risk Authentication Digital transformation

Phishing-Resistant MFA: Why FIDO is Essential

Security Boulevard

MAY 7, 2025

Traditional Multi-Factor Authentication (MFA), while a step up from password-only security, is no longer enough to fight modern phishing schemes. Todays threat actors use AI to craft compelling phishing campaigns and advanced social engineering tactics to slip past MFA, resulting in credential theft and account takeovers.

Phishing

Phishing Authentication Passwords Social Engineering

Four Reasons To Invest In CIAM for Customer Experience

Security Boulevard

FEBRUARY 14, 2022

In The 8 Digital Transformation Trends Shaping Business in 2022 report we learn that customers want intuitive ease, speed, and convenience; personalized omnichannel experiences that span physical and digital environments; and they demand security, privacy, and control over their data. What exactly are customers asking for?

Passwords

Passwords Retail Digital transformation Risk

Handling Pandemic Burnout While Balancing Digital Lifestyles and Cybersecurity

Hot for Security

MAY 25, 2021

They have slowly turned into an extension of ourselves, encompassing large volumes of information that in the end make up our real-life and digital selves.

Cybersecurity

Cybersecurity Identity Theft Media Digital transformation

Protecting Against Leakware: 5 Strategies for Vulnerable Executives

SecureWorld News

APRIL 4, 2022

Many companies in various industries have made digital transformations, as new and emerging technologies offer plenty of benefits. Government Accountability Office (GAO) data, 13 of the 16 agencies involved in the study reported a total cost savings of $291 million from using cloud services. Adopt cloud services.

Ransomware

Ransomware Digital transformation Phishing Small Business

Resolve to fix your Online Security Mess in 2020. Here’s how.

The Security Ledger

DECEMBER 29, 2019

We give you seven simple steps to level up your password and account security. » Related Stories Episode 163: Cyber Risk has a Dunning-Kruger Problem Also: Bad Password Habits start at Home RSA warns Digital Transformation is supercharging Digital Risk Passwordless? Read the whole entry. »

Digital transformation

Digital transformation Cyber Risk Passwords Risk

Cybersecurity Awareness Month 2024: The Top Four Ways to Secure Our World

Security Boulevard

SEPTEMBER 30, 2024

Use Strong Passwords and a Password Manager Sadly, less than 40% of all online users use a distinct password for each account, according to the National Cybersecurity Alliance 2023 Oh Behave! However, even strong and unique passwords have well-documented limitations and risks.

Cybersecurity

Cybersecurity Passwords Password Management Phishing

Companies need CASBs now more than ever — to help secure ‘digital transformation’

MY TAKE: Businesses gravitate to ‘passwordless’ authentication — widespread consumer use up next

Trending Sources

MY TAKE: A path for SMBs to achieve security maturity: start small controlling privileged accounts

Cybersecurity Resolutions for 2025

MY TAKE: How ‘credential stuffing’ and ‘account takeovers’ are leveraging Big Data, automation

Passwordless Authentication without Secrets!

Q&A: How your typing and screen swiping nuances can verify your identity

Phishing-Resistant MFA: Why FIDO is Essential

Level Up Your Security: Embrace Passkeys and Phishing-Resistant 2FA

Breaking the Barriers to a Password-Free Life in Enterprise: Meet SafeNet eToken Fusion NFC PIV security key

Credential Stuffing Fraud Attacks Make up 5% of All Digital Traffic

RSAC insights: Why vulnerability management absolutely must shift to a risk-assessment approach

SHARED INTEL: IT pros gravitate to ‘passwordless’ authentication to improve security, boost agility

NEW TECH: Devolutions’ ‘PAM’ solution helps SMBs deal with rising authentication risks

The Role Zero Trust Plays in Combating Privileged Credential Attacks

Q&A: Here’s why it has become vital for companies to deter ‘machine-identity thieves’

NEW TECH: Cequence Security launches platform to shield apps, APIs from malicious botnets

5 API Vulnerabilities That Get Exploited by Criminals

Solid Data Security: The Foundation of a Safe Digital World

Go Beyond FIDO Standards: Best Practices When Deploying FIDO Security Keys in Enterprise

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

NEW TECH: Why it makes more sense for ‘PAM’ tools to manage ‘Activities,’ instead of ‘Access’

Identity at a Crossroads: Why Existential Identity Matters

MY TAKE: Poll shows consumers won’t patronize companies that fail to assure ‘digital trust’

Identity Innovators at IDLive 2022: Humana, Toyota, US Bank and Others Reveal How AI, Cloud and Zero Trust Aid Digital Transformation

Healthcare Cybersecurity Market Soars: Key Trends and Insights

Breaking Free from Passwords: Passkeys and the Future of Digital Services

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

BrandPost: Deconstructing Identity Security

As 2-factor authentication falls short, ‘adaptive multi-factor authentication’ goes mainstream

GUEST ESSAY: ‘Initial access brokers’ — IABs — specialize in enabling surreptitious access

Digital Environments Engaging in Non-Human Identities Require Separate Data Structures

CIAM in insurance: A unified, secure user experience with a single login

Microsoft Accidentally Exposes 38TB of Sensitive Data

5 Things Retailers Should Know About Cybersecurity

SHARED INTEL: APIs hook up new web and mobile apps — and break attack vectors wide open

News alert: Badge expands availability of ‘Enroll Once and Authenticate on Any Device’ software

The noodle soup of B2B IAM and third-party identities

Phishing-Resistant MFA: Why FIDO is Essential

Four Reasons To Invest In CIAM for Customer Experience

Handling Pandemic Burnout While Balancing Digital Lifestyles and Cybersecurity

Protecting Against Leakware: 5 Strategies for Vulnerable Executives

Resolve to fix your Online Security Mess in 2020. Here’s how.

Cybersecurity Awareness Month 2024: The Top Four Ways to Secure Our World

Stay Connected