compromised credentials

Identity Threat Detection & Response

By Steve ToutSeptember 30, 2022Authentication, Cloud Security, compromised credentials, Dark Web, leaked passwords, Website SecurityBreached Web Service, compromised accounts, Leaked Accounts

Identity Threat Detection & Response Stop ATOs before they startWhat We Do DetectDetect compromised credentials in real-timeVerifyVerify credentials with zero false-positives RemediateLaunch password breach policies and allow self-service remediation Protect Your Organization Against Account Takeover Attacks VeriClouds CredVerify is the only service designed to detect, verify and remediate the use of weak or stolen credentials […]

The Thing About Uber’s Data Breach

By Steve ToutSeptember 16, 20222FA, Authentication, compromised credentials, CredVerify

If an MFA prompt comes before entering in a password or is “passwordless” and doesn’t require one at all, then that needs to be called out as an ineffective security posture as well.

Don’t Become A Victim to Account Takeover Attacks

By Stan BounevMarch 30, 2022Account Takeover Attacks, compromised credentials, CredVerify

ATO attacks are a huge reputational risk for businesses in the finance industry, but that pales in comparison when customers lose their entire life savings.

NIST Password Guidelines 2021: Challenging Traditional Password Management

By Stan BounevMarch 24, 20212FA, Authentication, CASB, Cloud Security, compromised credentials, Credential Monitoring, Dark Web, Exposed Data, Identity Threat Management, leaked passwords, Risk Management

In 2017, the National Institute of Standards and Technology (NIST) released NIST Special Publication 800-63B Digital Identity Guidelines to help organizations properly comprehend and address risk as it relates to password management on the part of end users. Nearly every year since, NIST has undertaken to update or underscore these guidelines as security experts continue […]

Assessing the risk of compromised credentials

By Stan BounevAugust 21, 20202FA, Authentication, CASB, Cloud Security, compromised credentials, Credential Monitoring, Dark Web, Exposed Data, Identity Threat Management, leaked passwords, Risk Management

Assessing The Risk of Compromised Credentials to The Enterprise Businesses today face an abundance of organizational risk. These come in the form of creating the business model itself, dealing with third parties, managing vendors and partners, monitoring internal and external fiscal fraud, exercising premise security, and the like. In the 21st century, no greater risk […]

Why Common IAM Solutions for Identity-based Attacks Aren’t Really Working

By Stan BounevMay 2, 20202FA, Authentication, CASB, Cloud Security, compromised credentials, Credential Monitoring, Dark Web, Exposed Data, Identity Threat Management, leaked passwords, Risk Management

by Stan Bounev and Chris Olive When faced with the problem of data being open to all users on an early, 1960’s mainframe computer, Fernando “Corby” Corbato rather nonchalantly assigned passwords to protect user private data, and the concept of the computer password was born. Fast forward to today, and no one ever would have […]

Account Takeover (ATO) Attacks Simply Don’t Matter

By Stan BounevJune 3, 2019Authentication, Cloud Security, compromised credentials, Credential Monitoring, Exposed Data, leaked passwords, Risk Management

Account Takeover (ATO) Attacks Simply Don’t Matter Account Takeover (ATO) attacks seemingly just don’t matter. That’s the conclusion a semi-informed outside observer might potentially come to based on how these pernicious attacks are being addressed by the cybersecurity community. That ATO attacks desperately need to be addressed, and addressed in the right way, goes without […]