Ponemon highlights a number of items that are absolutely excellent to focus on as a security program. However, nowhere on their list did they make room for truly preventative measures like securing privileged credentials.
Just like their malware bitten cousins, Linux hosts are often attacked because of poor privileged credential management. With so much of today’s IT infrastructure running on Linux, the need to win these security battles has never been more important.
It’s great that organizations are thinking about compliance. However, we need more emphasis on security. A security product will fail if it’s not implemented and maintained correctly. So every penny and minute that goes into choosing and maintaining the right product is worth it.
To call Lieberman Software’s online publication Identity Week a ‘blog’ doesn’t do it justice. Identity Week is a respected source of news and information about latest trends in the world of cyber security.
There are serious issues with treating IT security as a set of policies. They can all be captured in one thought – security is a battle, not a concept.
A distinction has to be made when it comes to how far perimeter security products go toward overall IT security. All they really do is keep out noise. In other words, perimeter security only prevents the low-skilled attacks looking for easy targets.
The notion of the CEO being involved in cyber security is essential. Often the implications and remedies to IT security issues cut across every aspect of an organization’s operations.
User threat intelligence, privileged misuse detection and intrusion detection technologies simply detect the most clumsy and incompetent attackers.
Many Small and Medium Enterprises (SMEs) may think they don’t have the budgets or the means for effective cyber security. But if they change the way they manage the one security element that hackers exploit most – privileged credentials – they can be much more secure.
People using the same passwords for multiple accounts is a problem. People writing passwords down or user fatigue with password management as an excuse to justify weak passwords are big issues. Simple passwords get cracked more easily, and when people reuse passwords a hack on your favorite dog food delivery service means they have a password that exposes corporate data.