Okta’s GitHub Breach: Insights and Recommendations
As recently reported, Okta recently experienced a security breach where the source code for its workforce identity cloud was stolen. As Silverfort partners with Okta, to protect our joint customers’ workforce identities we want to share with you our insights regarding this attack and subsequent precautionary steps organizations should take ... Read More
Cyber Insurance & MFA: 5 Things Every Broker Should Know
The surge in ransomware attacks has led leading underwriters to raise the bar for renewal or purchase of cyber insurance policies. Customers are now required to deploy various security measures – such as Multi-Factor Authentication (MFA). As a result, cyber insurance brokers – the ones that actually sell the policies– ... Read More
Silverfort: Your One-Stop MFA Solution for Cyber Insurance Compliance
The past six months have brought major changes to cyber insurance policies. Notably, almost all brokers are now requiring multi-factor authentication (MFA) across on-prem and cloud resources. This introduces a severe challenge to small and mid-sized organizations, since standard MFA solutions cannot deliver the required coverage and deploying a PAM ... Read More
Uber Breach Key Takeaways: Why MFA, Service Account Protection & PAM Must Work Together to Protect Against Compromised Credentials
The recent Uber breach should be a wake-up call in rethinking about how identity protection is implemented and practiced in today’s enterprise environments. Because the most striking aspect of this breach is not just the role compromised credentials played but the failure of the identity protection measures that were in ... Read More
Cisco Breach: A Painful Reminder of the Lateral Movement Blind Spot
No one is immune to breaches, as demonstrated last week when the networking giant Cisco reported a breach of its internal environment. Although reports indicate no significant harm was done, this breach presents an opportunity to reflect on the critical gaps in today’s identity protection landscape across key stages in ... Read More
How PassBleed Exposes On-Prem Workstations and Servers to Critical Risk
Security researchers from Authomize recently uncovered how the PassBleed technique enables attackers to access Cleartext usernames and passwords of Okta users by intercepting SCIM traffic. While at first this risk appears to relate exclusively to enterprise SaaS and web applications that are managed by Okta, in fact the hybrid nature of today’s ... Read More
