#AutomationSecurity

Seven Bolt-Ons to Make Your Entra ID More Secure for Critical Sessions

December 9, 2024 by Xynik

December 9, 2024 at 07:07AM The article emphasizes the importance of enhancing identity security with additional layers for privileged users, particularly for high-impact IDs. It outlines several strategies, including privilege elevation management, passwordless access, and securing automated machine connections, while highlighting the need for comprehensive monitoring and governance to prevent security bypasses. ### Key Takeaways … Read more

What the Latest Ransomware Attacks Teach About Defending Networks

March 21, 2024 by Xynik

March 21, 2024 at 10:26AM Ransomware attacks are impacting organizations across all sectors, with recent high-profile incidents involving Change Healthcare and Veolia North America. These attacks have highlighted the need for lessons learned and strategies to limit ransomware risk, including enhancing email and endpoint security, properly encrypting sensitive data, establishing a solid backup strategy, and … Read more

Non-Human Access is the Path of Least Resistance: A 2023 Recap

December 12, 2023 by Xynik

December 12, 2023 at 06:36AM The year 2023 witnessed a surge in cyber attacks, particularly through non-human access credentials like API keys, tokens, and service accounts. These credentials lack robust security measures and are often over-permissive and unused, making them an ideal target for cybercriminals. Several high-profile attacks exploited non-human access, prompting the need for … Read more