How MFA Misconceptions Enable Lateral Movement

In incident response, you've seen the pattern before: An attacker lands on a system and within hours, multiple systems are compromised and every alert traces back to one thing: an RDP session.

WaterISAC is the only security information clearing house for the water and wastewater sector. Serving hundreds of organizations worldwide, they ensure the sector sees, understands, and mitigates threats that put our common infrastructure at risk.

Throughout our deep dives into the various Typhoon APT groups, we saw that our existing controls still aren't enough. Instead of adding more defenses on the perimeter, let's think about some depth.

We're excited to announce the third edition of Skjaldtorg: Iceland’s Cybersecurity Meetup, a community-driven forum for professionals leading cybersecurity efforts in their organizations.Skjaldtorg is about real conversations – no fluff, no sales pitches.

Cybersecurity threats don’t stand still - they move. After gaining initial access, adversaries use to move through a network aiming to escalate privileges, and access sensitive data. Let's talk about the how, why, and what's next.

All of our security tools, practices, and controls are based on a series of assumptions. What if those assumptions are wrong? Do our tools still protect our systems?

Volt Typhoon has quietly moved through critical infrastructure networks, unseen and unchallenged. Unlike gangs that try for disruptions, Volt Typhoon takes a stealth-first approach.

Attackers quietly living off the land is one of the most devastating threats to our systems. How do attackers manage it without detection?

The adversaries targeting water infrastructure are skilled, organized, and often well-funded. Understanding how they attack is as important as why they attack.

For years, Chinese state-sponsored attackers have moved through the networks of the most critical industries—telecommunications, energy, defense, and government. Not to vandalize, not to ransom, but to wait.

PAM helped us limit the scope and timing of access but - like in any arms race - our opposition learned and adapted to a new class of attacks.

Cybercriminals are relentless and resourceful in their pursuit of vulnerabilities, and company employees and contractors often find themselves at the front line.

Multi-factor authentication (MFA) is a critical line of defense in cybersecurity, but the trust we place in its underlying infrastructure can be exploited.

It’s time for our second informal Icelandic forum for cybersecurity. Skjaldtorg: Iceland’s Cybersecurity Meetup, aimed at professionals responsible for cybersecurity within their organizations.

Multi-factor authentication (MFA) has long been seen as a strong defense against unauthorized access.

It’s time for an informal Icelandic forum for cybersecurity. We are pleased to announce Skjaldtorg: Iceland’s Cybersecurity Meetup, aimed at professionals responsible for cybersecurity within their organizations.

Multi-factor authentication (MFA) is viewed as a key component of modern cybersecurity, but it’s far from invincible.

For all its merits, over reliance on Multi-Factor Authentication (MFA) has become a real security problem.

At Keystrike nothing is more important to us than customer success, and success is built upon trust.

Lateral movement is a stealthy and dangerous technique employed by cybercriminals to infiltrate and exploit secure networks.

Cybercriminals employ various methods and techniques to exploit vulnerabilities and gain unauthorized access to sensitive information.

Remote desktop protocol (RDP) has become an integral part of modern computing. It allows users to connect to and control remote computers, providing seamless access to resources and applications.

Cyber threats are becoming increasingly sophisticated, and one of the methods employed to achieve social engineering is through exploiting MFA (Multi-Factor Authentication) fatigue.

The commonly known term social engineering refers to the act of manipulating people to gain access to confidential information or to influence their behavior.

Cyber threats are becoming increasingly sophisticated, organizations need to adopt a proactive approach to network security.

MFA, or Multi-Factor Authentication, has become an integral part of our digital lives. It provides an added layer of security, requiring users to go through multiple steps to verify their identities.

Protecting yourself from social engineering is more crucial than ever. Social engineering is a form of manipulation used by cyber attackers to exploit human psychology and gain unauthorized access to personal information or sensitive data.

In today’s digital era, cloud technology has become an essential part of businesses. It allows organizations to store and access their data remotely, providing convenience and flexibility.

Phishing emails have become a common and persistent threat in today’s digital world. While they may vary in their approach and techniques.

Remote Desktop Protocol (RDP) servers have become increasingly popular for remote access to computers and networks.

Phishing attacks have become an all too familiar threat in today’s digital world. In recent years, however, a new breed of cyber attack has emerged, known as spear phishing.

Traditional methods of authentication are no longer sufficient. Hackers have become adept at exploiting vulnerabilities in static password-based systems, leaving users and their valuable data at risk.