PayPal Breach 2023: Tip of the Iceberg
The PayPal breach of 2023 reminds us that 2FA isn’t a silver bullet and that credential security matters more than ever.
VeriClouds Blog Articles
The Antidote for the LastPass password vault breach
The scale of the recent LastPass breach is so large, changing all the passwords isn’t the most practical or realistic solution.
VeriClouds Integrates with Ping Identity’s DaVinci to Enable Stronger Authentication and Stop Account Takeover Attacks
VeriClouds is pleased to announce that we will be launching CredVerify for Ping Identity’s PingOne DaVinci. The integration provides Ping customers with an integrated and systematic approach to automated detection and remediation of stolen and compromised credentials.
The Thing About Uber’s Data Breach
If an MFA prompt comes before entering in a password or is “passwordless” and doesn’t require one at all, then that needs to be called out as an ineffective security posture as well.
The Business Case for ITDR
Hear VeriClouds founder and CEO, Stan Bounev, and Traceable AI CSO Richard Bird discuss how organizations should be thinking about and acting on ITDR with greater urgency.
Don’t Become A Victim to Account Takeover Attacks
ATO attacks are a huge reputational risk for businesses in the finance industry, but that pales in comparison when customers lose their entire life savings.
The Chimera of Zero Trust
There is no doubt that growth in the Zero Trust market is fueled by the increasing frequency of cyber-attacks and regulations for data protection. But let’s face it, Zero Trust (ZT) is a chimera for most organizations. As long as we continue to define successful ZT as “MFA everything” and least privilege access everywhere, it’s never going to happen.
NIST Password Guidelines 2021: Challenging Traditional Password Management
In 2017, the National Institute of Standards and Technology (NIST) released NIST Special Publication 800-63B Digital Identity Guidelines to help organizations properly comprehend and address risk as it relates to password management on the part of end users. Nearly every year since, NIST has undertaken to update or underscore these guidelines as security experts continue […]
Assessing the risk of compromised credentials
Assessing The Risk of Compromised Credentials to The Enterprise Businesses today face an abundance of organizational risk. These come in the form of creating the business model itself, dealing with third parties, managing vendors and partners, monitoring internal and external fiscal fraud, exercising premise security, and the like. In the 21st century, no greater risk […]
Why Common IAM Solutions for Identity-based Attacks Aren’t Really Working?
by Stan Bounev and Chris Olive When faced with the problem of data being open to all users on an early, 1960’s mainframe computer, Fernando “Corby” Corbato rather nonchalantly assigned passwords to protect user private data, and the concept of the computer password was born. Fast forward to today, and no one ever would have […]