October 15, 2024 at 08:10AM Organizations increasingly rely on digital technologies, making identity the key security perimeter. Despite adopting security measures like MFA and single sign-on, many accounts remain vulnerable to attacks. Research indicates significant gaps in MFA usage and password security, with high risks of credential stuffing and phishing due to weak practices. ### … Read more
March 5, 2024 at 10:56AM Passwords are crucial for security but can also incur significant costs. Forgotten passwords and resets affect productivity, costing organizations time and money. Help desk queries and support staff add to expenses. Weak passwords also pose security risks, leading to data breaches and financial implications. Using MFA, SSO, training employees, and … Read more
February 29, 2024 at 06:08AM The SolarWinds attack involved the use of “Golden SAML” technique to forge SAML response tokens and gain access to enterprise networks. Researchers at Semperis have now identified a new version called “Silver SAML,” which does not require access to ADFS and can work with Microsoft Entra ID and other identity … Read more