Duo's Security Blog

MAY 30, 2024

But Duo hasn’t stopped there, as we have a unique ability to respond and establish scalable, structured product enhancements to our threat detection and response capabilities. One device being used to authenticate the account of 27 students across 5 schools? A typical device might be linked to a small number of Duo accounts.

Education 119

Education Cyber threats Authentication Threat Detection 119

IT Security Guru

MARCH 4, 2025

The attackers bypassed security measures using a stolen Microsoft security key to forge authentication tokens. Now, realising the necessity for further strengthening defences, CISA has emphasised the transformative potential of Microsofts expanded cloud logs for proactive threat detection and provided guidance in the playbook.

Government 62

Government Threat Detection Technology Cyber threats 62

CyberSecurity Insiders

NOVEMBER 19, 2021

The ETP app is capable of grabbing a range of ETP events—including threat, AUP (Acceptable User Policy), DNS activity, network traffic, and proxy traffic events—and feeding them into the robust USM Anywhere correlation engine for threat detection and enrichment.

Threat Detection 132

Threat Detection Engineering DNS Architecture 132

Duo's Security Blog

JULY 25, 2024

Given the complexity of policy, even the most advanced teams struggle to deploy, maintain and assess a strong access management policy posture standard that helps mitigate threats while also supporting a productive business. What is ITDR, or Identity Threat Detection & Response? Why is ITDR & ISPM important?

Threat Detection 139

Threat Detection Risk Architecture Artificial Intelligence 139

Cisco Security

JUNE 13, 2022

For example: IMPACT : An SSH server which supports password authentication is susceptible to brute-forcing attacks. REPRODUCTION : Use the `ssh` command in verbose mode (`ssh -v`) to determine supported authentication methods. REMEDIATION : Disable unneeded authentication methods. The second story comes from machine detections.

DNS 139

DNS Engineering Authentication Malware 139

SecureWorld News

AUGUST 7, 2024

The annual Black Hat conference, happening this week in Las Vegas, is renowned not only for its cutting-edge presentations and workshops but also for its robust cybersecurity measures that protect the large event from malicious threat actors. This includes firewalls, intrusion detection systems (IDS), and monitoring tools.

Firewall 117

Firewall Cybersecurity Threat Detection Cyber threats 117

Cisco Security

DECEMBER 13, 2022

The industry is certainly feeling the impending impact of the act – with one industry pundit at an event we ran recently describing it as a ‘multi-generational change’ for the sector. One of the headline grabbers stemming from the Act are the associated fines. Proactive tech refresh. Prompt disaster recovery. Timely incident response.

Telecommunications 145

Telecommunications Authentication Risk Cyber Risk 145

The Last Watchdog

JULY 30, 2024

July 30, 2024, CyberNewsWire — Amid rising breaches including Snowflake, the platform helps security teams proactively detect and respond to identity-centric threats in business-critical SaaS applications. Las Vegas, Nev., The recent Snowflake breach served as a wake-up call for the SaaS industry.

Threat Detection 100

Threat Detection Accountability InfoSec Technology 100

Cisco Security

AUGUST 26, 2022

The AlienApp for Cisco Secure Endpoint enables you to automate threat detection and response activities between USM Anywhere and Cisco Secure Endpoint. In addition, it allows you to collect hourly events from Cisco Secure Endpoint through the USM Anywhere Job Scheduler. New Secure Malware Analytics (Threat Grid) Integrations.

Firewall 144

Firewall Authentication Passwords Threat Detection 144

eSecurity Planet

FEBRUARY 6, 2023

SolarWinds Security Event Manager (SEM) 2022.4 SolarWinds SIEM Features Rated Threats Blocked: Good. SEM ships with hundreds of predefined correlation rules, including authentication, change management, network attacks, and more. It trades on the NYSE under the symbol SWI. Breadth of Sources: Very good. Management: Good.

Architecture 52

Architecture Authentication Software Threat Detection 52

Webroot

SEPTEMBER 24, 2024

For consumers: Stay alert to potential phishing attacks or scams related to global events. Whether it’s during an election, the holiday season, a big sporting event, or a major business transaction, cybercriminals wait for the right moment to maximize damage. Download your copy of OpenText’s 2024 Threat Hunter Perspective today.

Cyber threats 116

Cyber threats Small Business Scams Cybercrime 116

SecureWorld News

APRIL 23, 2025

Beyond patching, deploying automated orchestration tied to live threat feeds can prioritize remediation on the fly. The most effective controls combine microsegmentation with strong authentication and adaptive access and behavioral analytics. The term zero trust is often used, but its the principles behind it that are important.

Ransomware 101

Ransomware CISO Backups Risk 101

SecureWorld News

JULY 8, 2024

Additionally, implementing multi-factor authentication (MFA) can add an extra layer of security, making it harder for attackers to gain unauthorized access. As cyber threats evolve, organizations must prioritize protecting customer data. that tend to have better security) instead of creating a separate account.

Passwords 127

Passwords Password Management Education Accountability 127

Cisco Security

AUGUST 26, 2021

Using the Cisco Secure Endpoint APIs, partner integrations provide analysts with rich threat information and actions on endpoint events; like retrieving endpoint information, hunting indicators on endpoints, searching events, etc. There are many options for step-up authentication, including Cisco Duo OTP and push notifications.

Technology 142

Technology Firewall VPN Authentication 142

Duo's Security Blog

JULY 21, 2022

Enhanced Security Visibility and Threat Intelligence When Duo launched Trust Monitor in November 2020, the idea was to highlight suspicious login activity and help SecOps investigate potentially compromised accounts.

Authentication 105

Authentication Threat Detection Accountability Mobile 105

Cisco Security

JUNE 30, 2022

After two years of virtual engagements, in-person events like our CISO Forum and Cisco Live as well as the industry’s RSA Conference underscore the power of face-to-face interactions. However, advanced telemetry, threat detection and protection, and continuous trusted access all help decelerate the trend.

Digital transformation 145

Digital transformation Data privacy Identity Theft Data breaches 145

McAfee

JULY 8, 2021

Threat Detection (insider, compromised accounts, malicious/anomalous activities). Utilizing the CASB Connect framework, McAfee MVISION Cloud becomes an authorized third party to a customer’s Smartsheet Event Reporting service. This is an API-based method for McAfee to ingest event/audit logs from Smartsheet.

Threat Detection 101

Threat Detection Authentication Accountability Risk 101

CyberSecurity Insiders

FEBRUARY 1, 2022

In addition, achieving ISO compliance also helps protect your organization by requiring cybersecurity tools for asset discovery, vulnerability assessment, continuous security monitoring, and event reporting. Implement managed threat detection. Implement Zero Trust.

Risk 134

Risk Social Engineering Threat Detection Encryption 134

Cisco Security

AUGUST 11, 2021

Cisco Security was honored to be a sponsor of the 24th Black Hat USA 2021 Conference – the internationally recognized cybersecurity event series providing the security community with the latest cutting-edge research, developments and training. ” -Wendy Nather. Compromised Credentials: THE Most Observed Initial Access Vector .

Backups 145

Backups CISO Ransomware Cyber Attacks 145

CyberSecurity Insiders

MAY 12, 2021

MITRE ATT&CK® is an invaluable resource for IT security teams, who can leverage the framework to enhance their cyber threat intelligence, improve threat detection capabilities , plan penetration testing scenarios, and assess cyber threat defenses for gaps in coverage. Threat Detection & Analytics.

Threat Detection 90

Threat Detection Penetration Testing Cyber threats Cyber Attacks 90

SecureList

APRIL 16, 2025

Inefficient use of data for correlation in many cases, relevant data is available to detect threats, but there are no correlation rules in place to leverage it for threat detection. We discussed them in more detail in our detection prioritization article.

Engineering 69

Engineering Threat Detection Firewall Digital transformation 69

SecureWorld News

MAY 8, 2025

Secure remote access to OT assets using virtual private networks (VPNs) with phishing-resistant multifactor authentication (MFA). Practice reverting to manual controls to quickly restore operations in the event of an incident. Key trends include: AI-driven threat detection that continuously learns and adapts to new attack patterns.

Internet 60

Internet Internet Technology Risk 60

Duo's Security Blog

NOVEMBER 28, 2023

Security lockout in Duo Trust Monitor and unenrolled user lockout enable just that in the authentication security realm. Trust Monitor Lockout Duo Trust Monitor is a Duo threat detection feature focused on surfacing valuable and actionable security events to Duo administrators in the admin console.

Authentication 85

Authentication Accountability Threat Detection Risk 85

CyberSecurity Insiders

JUNE 15, 2022

Without proper functions, security testing, authentication checks, and input validation, APIs can become a perfect target. For example, Pelton, a fitness company exposed three million customer data due to a flawed API, which allows access to a private account without proper authentication. API Security Breaches are Piling Up.

Firewall 106

Firewall DDOS Authentication Threat Detection 106

CyberSecurity Insiders

OCTOBER 1, 2021

Once network presence is established, hackers can compromise authentication credentials to gain administrator rights for even more access. 2FA Any critical endpoints should utilize two-factor or multi-factor authentication (2FA or MFA), which requires a second verification step. Once inside, they can even cover their tracks.

Firewall 139

Firewall Backups Ransomware Phishing 139

Responsible Cyber

MARCH 2, 2025

You can invite unlimited users, but theres no support for Single Sign-On (SSO) or two-factor authentication (2FA) enforcement at the admin level. This allows for centralized user authentication, reducing the risk of unauthorized access. contractors) to limit exposure. who edited a message or shared a file).

Threat Detection 40

Threat Detection Encryption Risk Healthcare 40

The Last Watchdog

MAY 15, 2021

So from inside SolarWinds, these elite hackers were able to distribute authentic, though infectious, Orion updates. These playbooks are then used to trigger automated responses to known threats, thus relieving a human analyst from having to manually filter vast tiers of threat data. FireEye naturally notified SolarWinds.

Technology 157

Technology Hacking CISO IoT 157

eSecurity Planet

OCTOBER 20, 2023

Role-based access control (RBAC) and multi-factor authentication ( MFA ) regulate resource access. Continuous security monitoring identifies and responds to threats in real time. To guard against cyber attacks, cloud systems include powerful security features such as encryption, firewalls, authentication, and data backups.

Backups 120

Backups Firewall Encryption Architecture 120

CyberSecurity Insiders

OCTOBER 28, 2021

Cybersecurity automation gives organizations the ability to perform threat detection and incident response at scale. This includes checking for authentication, authorization, and even encryption protocols. Here are just some of the functions that businesses can automate to increase overall cybersecurity: Incident response.

Cybersecurity 134

Cybersecurity Data privacy Small Business Threat Detection 134

eSecurity Planet

DECEMBER 19, 2023

Breaking Authentication Attackers can get unauthorized access to the IaaS environment by exploiting weak authentication systems or weaknesses in the authentication process. This danger emphasizes the significance of having strong authentication mechanisms and upgrading access controls on a regular basis.

Encryption 113

Encryption Firewall Authentication Software 113

Duo's Security Blog

APRIL 4, 2023

You might imagine a room full of Security Analysts sitting in desks that are all facing the same direction - towards multiple monitors hanging on the wall that display maps, graphs, threat feeds, and incident queues. However, does your Security Incident and Event Management (SIEM) platform know about Duo?

Authentication 59

Authentication Engineering Threat Detection Mobile 59

CyberSecurity Insiders

NOVEMBER 24, 2021

Cybersecurity automation gives organizations the ability to perform threat detection and incident response at scale. This includes checking for authentication, authorization, and even encryption protocols. Here are just some of the functions that businesses can automate to increase overall cybersecurity: Incident response.

Cybersecurity 122

Cybersecurity Data privacy Small Business Threat Detection 122

IT Security Guru

APRIL 12, 2022

There are a few notable exploited misconfigurations, from default built-in file sharing, and lack of password enforcement, albeit no password to multi-factor authentication (MFA), to the risks of legacy protocols and OAuth apps, that can bring a little clarity to understanding the complex landscape that is a company’s SaaS security posture.

CISO 113

CISO Passwords Marketing System Administration 113

Centraleyes

MAY 15, 2025

Features like Single Sign-On (SSO) and Multi-Factor Authentication (MFA) are essential for reducing credential-based attacks. IBM Security Verify AI-Powered Access Control IBM Security Verify delivers adaptive access controls and AI-driven authentication. It prevents unauthorized data exfiltrationintentional or accidental.

Risk 52

Risk Data breaches Threat Detection Accountability 52

Duo's Security Blog

DECEMBER 13, 2023

We also announced Duo’s vision for streamlining the user authentication workflow. Duo Customer Newsletter — Duo’s monthly newsletter is available to all customers and includes the latest information on feature releases, learning opportunities, events, and more. Visualizing a Successful Future Some customers use Duo only for MFA.

Artificial Intelligence 118

Artificial Intelligence Threat Detection Authentication Engineering 118

eSecurity Planet

MARCH 17, 2023

Vulnerability Management Product Guides 8 Best Vulnerability Scanner Tools Top 10 Open Source Vulnerability Assessment Tools 12 Top Vulnerability Management Tools Threat Intelligence and Detection At the most basic level, threat detection strategies and tools monitor networks for suspicious and anomalous activity.

Network Security 120

Network Security Penetration Testing Firewall Antivirus 120

CyberSecurity Insiders

NOVEMBER 4, 2021

The zero trust approach still authenticates users based on passwords, among other traditional security procedures. Embracing a zero-trust model heightens requirements for user authentication and protects employees and customers alike. Therefore, ensuring mobile devices are protected from cyber-attacks is essential.

Retail 111

Retail eCommerce Cyber Attacks Authentication 111