Identity Protection Can’t be Taken for Granted Anymore
The findings in report challenge the implicit trust that the purchase and deployment of an identity security solution equals protection The post Identity Protection Can’t be Taken for Granted Anymore appeared first on Silverfort ... Read More
Time to Wake Up: The Defenses of the Identity Attack Surface are Broken
Today we released the world’s first report into the identity attack surface conducted by Osterman research and commissioned by Silverfort – The State of the Identity Attack Surface: Insights into Critical Security Gap. The report provides two key insights for security stakeholders: What is the identity attack surface? The identity ... Read More
Protecting Oil and Gas Companies from Ransomware Threats: Strengthening Air-Gapped OT Networks
In today’s interconnected world, the cybersecurity landscape has grown increasingly complex, especially for critical industries such as oil and gas. The rise of ransomware attacks targeting this sectors has raised serious concerns about the security of their operational technology (OT) networks. Traditionally thought to be safe due to their air-gapped ... Read More
Resolving the Identity Protection Gaps in APRA’s Resilience Assessment’s FindingsÂ
The Australian Prudential Regulation Authority (APRA) recently published findings from a study examining the level of cybersecurity resilience of its regulated entities, which revealed an alarming number of security gaps. In this blog we take a look at the identity protection aspects of these gaps, and discuss how identity and ... Read More
Building an Alert System Using Snowflake
During my time here at Silverfort, I was tasked with building an alert system to send messages from our Snowflake database directly to a Slack channel. Easy enough, I thought to myself. But the project expanded quickly and has now evolved into a critical component we use daily to monitor ... Read More
Mind the Gap! Who’s Accountable to Protect Against Identity Threats in your Organization?
Identity threats (i.e., the use of compromised credentials for malicious access to targeted resources) have become the dominant element of today’s threat landscape. Moreover, these are the threats that organizations find the hardest to protect against, with lateral movement and ransomware spread causing widespread damage on a seemingly daily basis ... Read More
Introducing the LATMA Algorithm for Better Lateral Movement Detection
Lateral movement detection is a challenge every cybersecurity researcher is likely familiar with. My team and I faced this challenge a few months ago and, not surprisingly, quickly discovered there is no easy or fast solution to address it. In this post, I’ll explain the challenge of detecting lateral movement ... Read More
How Silverfort Protects Against the Risk from Shadow Admins
Shadow admins are one of the key attack surfaces that adversaries regularly take advantage of. The pattern of discovering a user who has been inadvertently assigned high access privileges is all-too-common in today’s cyber operations. This makes the ability to detect and prevent the abuse of these accounts a top ... Read More
MFA and Administrative Access Protection Are the Means. But to What End?
Every so often in cybersecurity it’s useful to reflect on things taken for granted and choices made — specifically why they were made and whether these things achieved their purpose. For example, let’s examine the use of MFA and the protection of administrative access. We know these are critical but ... Read More
Compliance with CCOP Identity Protection Requirements Made Easy with Silverfort
The Cybersecurity Code of Practice for Critical Information Infrastructure 2.0 is an enhancement of the first version that was released in 2018 This Code is intended to specify the minimum cybersecurity requirements that organizations that operate Critical Information Infrastructure (CII) should implement. This applies to all components of an IT ... Read More
