CSO Magazine

JUNE 23, 2021

With the recent Colonial Pipeline attack , the initial infection point was reportedly an old, unused, but still open VPN account. The password had been found on the dark web rather than obtained via phishing , implying that it had been leaked or reused by a Colonial employee.

VPN 117

VPN Accountability Phishing Authentication 117

CSO Magazine

OCTOBER 18, 2022

Many of the most prominent cybersecurity incidents have resulted from attackers using stolen credentials (username and password) to gain access to networks. for days, began with attackers using a stolen password to gain access to a legacy VPN system.

VPN 97

VPN Passwords Ransomware Cybersecurity 97

Malwarebytes

MARCH 23, 2022

In an article on Okta’s website , CSO David Bradbury provided a timeline of the incidents which took place in January. For example, on 10 March, it said it was looking to recruit tech company “employees/insiders” who were prepared to provide remote access, such as VPN or Citrix access. Okta’s statement.

CSO 108

CSO Engineering Passwords Cybercrime 108

Security Through Education

OCTOBER 27, 2021

Don’t make passwords easy to guess. Connect to a secure network and use a company-issued Virtual Private Network (VPN). Typically, corporate networks are equipped with firewalls, a Chief Security Officer (CSO), and a whole cybersecurity department to keep them safe. Ensure software and security settings are up to date.

Cybersecurity 137

Cybersecurity Social Engineering Firewall Engineering 137

SecureWorld News

APRIL 22, 2021

We strongly recommend that customers review the advisories and follow the recommended guidance, including changing all passwords in the environment if impacted. Mandiant is currently tracking 12 malware families associated with the exploitation of Pulse Secure VPN devices.

Government 88

Government CSO Software VPN 88

CSO Magazine

MARCH 20, 2023

ForegeRock is adding a new passwordless authentication capability, called Enterprise Connect Passwordless, to its flagship Identity Platform product to help eliminate the need for user passwords in large organizations. To read this article in full, please click here

Authentication 68

Authentication VPN Mobile Passwords 68

The Last Watchdog

DECEMBER 14, 2023

Instead of arguing about MFA strength, VPN vendor, or nation-state treat actors, let’s finish our conversation about using dedicated administrator accounts and unique passwords. Richard Bird , CSO, Traceable AI Bird The bad guys are showing no restraint in exploiting API security weakness to their advantage.

Cybersecurity 235

Cybersecurity Risk CSO Cyber threats 235