Authomize, now part of Delinea

Rightsizing your non-human identities is a critical step in reducing the blast radius of an attack if one of them is taken over. Learn how Cloud Infrastructure Entitlement Management (#CIEM) can help you to get your privileges aligned with Least Privilege across every environment. Download our vendor-neutral Buyer’s Guide for CIEM to learn what separates between a standard level and a best of breed solution. https://lnkd.in/djaSdPW3 #cloudsecurity #identitysecurity

Register now for Delinea 's upcoming webinar on March 21st to learn how to ensure privilege control access across your hybrid and cloud environments. https://lnkd.in/dXMbNVMg

Tune in for another episode with Joseph Carson as he's joined by Presidio's Dan Lohrmann to talk #ransomware, #identitysecurity, and #incidentresponse

More troubling reports out of #microsoft concerning #midnightblizzard ’s breach of their corporate emails. The Russian state hacking group has reportedly increased its #passwordspraying by 10x since January, hitting more targets with this basic yet effective attack. Making matters worse, the hackers are taking Microsoft’s customers’ secrets, believed to be credentials, authentication tokens, and API keys used for non-human identities, from the hacked emails. This is a big challenge for impacted organizations because these non-human identities often don’t have MFA and are generally unmonitored. Not to mention that they’re often way overprivileged, creating ample opportunities for highly impactful hacks. Stopping these attacks requires a holistic approach that covers the attack chain from end-to-end across all environments. Organizations need to: 🔎 Monitor for password spraying attacks across all applications and services 🚨 Use signals of suspicious or malicious activity to automatically respond with risk-based access controls that can block access and terminate sessions to keep accounts secure 🧙♂️ Monitor and understand the extent of access that each non-human identity has and where it is over-privleged. Then use data-driven insights to reduce permissions and achieve Least Privilege. For more information on securing your identities, human and not, reach out to speak with one of our experts. https://lnkd.in/g-3kMm6k

Did you catch Gal Diskin on stage today laying out the growing threat of actors exploiting identity?

There’s a new phishing campaign out there targeting Okta users in the US with fake pages to harvest their credentials. Complete with login pages and MFA, this campaign shows that attackers are continuing to adapt with better looking lures and more realistic user experiences to get targets to turn over their credentials. While Okta isn’t the only target on the list that includes major crypto platforms and email providers, it is a reminder that attackers know that taking over an Okta account isn’t just a quick payoff. It’s an investment opportunity to take over all of an employee’s downstream apps. So what can we learn from this and similar attacks by groups like Scattered Spider? 🚨 MFA is good but it can be defeated. So defense at depth that detects both suspicious login attempts to Okta and malicious activity post-breach are a must. 😟 If the attacker has even low level privilege inside of Okta, then they can gain persistence by adding their own identity sources, impersonate other privileged users, and manipulate logs. Okta needs to be independently monitored to detect these kinds of attacks. ❌ Attackers can carry out these campaigns at scale, so we need to find ways to automate responses and shut attackers out before they can cause damage. For more information on how to secure your Okta, visit us today and speak with an expert. #oktabreach #oktasecurity #phishingattacks https://lnkd.in/ex7rvmjh

ICYMI, this story about a former Gizmodo employee retaining access to Slack was making the rounds last week. While this one appears to be just a reporter playing around with his former colleagues, all too often, failure to fully off board employees when they leave can lead to serious consequences. We’ve seen in the past hackers get into #Slack to convince the Help Desk to reset passwords and get around MFA. Forget about all of the potential access to internal communications and other assets. Contact us to learn more about ensuring total off boarding on every platform across every cloud environment. #datalossprevention #infosec https://lnkd.in/ghmvunmg 

Did you miss Joseph Carson's live #webinar last week covering the #ransomware challenges facing organizations in 2024? Get your on-demand download here. Be sure to stay tuned for more upcoming webinars from Joe and the team. https://lnkd.in/dkD-fHUd