Name: Why Are We Stuck in Groundhog Day When it Comes to Compromised Credentials?
Start: 2024-06-05T13:29:00Z
End: 2024-06-05T13:29:37.000Z
Location: BrightTALK
Rating: 5

Duo is a cloud-based security platform that protects access to all applications, for any user and device, from anywhere. It’s designed to be both easy to use and deploy, while providing complete endpoint visibility and control. 

Duo verifies users' identities with strong multi-factor authentication. Paired with deep insights into your users’ devices, Duo gives you the policies and control you need to limit access based on endpoint or user risk. Users get a consistent login experience with Duo's single sign-on that delivers centralized access to both on-premises and cloud applications.

With Duo, you can protect against compromised credentials and risky devices,  as well as unwanted access to your applications and data. This combination of user and device trust builds a strong foundation for a zero-trust security model.

Recent breaches, including a prominent data warehousing company, have sent shockwaves through the tech community, and this is a stark reminder that no organization, no matter the size, is immune to cyberattacks. 

In this webinar, identity security expert, Mike Rotar, will highlight five ways to combat identity attacks – starting with the current attack landscape, explore the lessons learned from recent attacks, and how Duo can be your ally in safeguarding your identities from ‘low-hanging fruit’ identity attacks in the wild. Hopefully, by the end of the session, attendees will feel equipped to dramatically improve their identity defenses – because at Duo, we’ve got you!

5 Ways Duo Helps you Combat Identity Attacks

Most people know that identity-based attacks are on the rise. The cybersecurity headlines seem full of breaches that involve identity as a key target. But, just because a problem is prevalent, doesn’t mean solutions to the problem are easy to implement. In fact, it can often feel overwhelming to break down the problem of identity-based attacks into concrete actions that will help improve defenses.

In this webinar, cybersecurity expert, Ted Kietzman, will highlight three key strategies to improving identity security – starting at the conceptual level and then diving deeper into descriptive examples of how each will help strengthen the identity perimeter. Hopefully, by the end of the session, attendees will feel equipped to dramatically improve their identity defenses – because at Duo, we’ve got you!

3 Concrete Ways to Improve Your Identity Security

With an industry-wide move to a zero trust security approach, the user’s identity has become the new security perimeter. Data from breach investigation reports clearly shows how the attackers have adapted and followed this shift. Most breaches today have an identity component and the identity is now under attack. So what happens next?

In this webinar we look at why these attacks succeed, how you can gain better visibility into the true identity security posture of your systems, and how the authentication processes can be hardened with new and existing tools.

Identity Under Siege: Strategies for Enhancing Security in a Zero Trust World

Your security is our priority. Join tech experts in our upcoming webinar to see how Cisco Duo’s newest innovations from RSAC 2024 can bolster your defenses. We’ll share how Duo’s powerful new integration with Cisco Identity Intelligence enables you to not only prevent sophisticated identity attacks, but also detect and respond to them with unmatched efficiency.

Also on the agenda? Discover how you can say goodbye to endless authentication requests with Duo Passport, a solution that closes security gaps and streamlines access to resources without unnecessary friction.

We know that strong solutions work together. Get the latest on Duo’s new partner integrations with Microsoft and Google that help deliver stronger security and increased productivity.

Bolster Your Defenses with Continuous Identity Security from Duo

You’ve no doubt heard the phrase, “Attackers don’t hack anyone these days. They log on.” By obtaining (or stealing) valid user account details, an attacker can gain access to a system, remain hidden, and then elevate their privileges to “log in” to more areas of the network.

As a result of the level of access stolen credentials can provide, the use of valid accounts is prevalent across the threat landscape. Not only is it the second most common MITRE ATT&CK tactic, but the rise of MFA and an increase in basic phishing awareness means adversaries have gotten more creative. Often, this ends with the user being targeted for possible manipulation as part of an “insider attack.”

But don't worry, at Duo, we've got you. To illustrate ways in which security practitioners can help defend against the techniques employed in credential stealing attacks, this webinar will break down an identity attack piece by piece. There will also be a discussion of methods and mechanisms to prevent or detect these techniques to stop breaches or limit their impact.

How Attackers Steal Credentials to Gain Stealthy Access to Your Organization

Join us for a Webinar on demand with Negisa Taymourian and Christian Clasen from the Cisco Umbrella product team, as they share best practices and practical tips to help your institution stay ahead of threats.
 
 We’ll cover:
 
 Techniques and tactics attackers are using in the education sector
 How Cisco’s Security for Chromebook provides a safer internet experience for students on- and off-campus, with robust defense against phishing attacks
 A demo of Umbrella’s capabilities in a Chromebook environment

Join us to equip yourself with the knowledge and tools to create a safer internet experience for students across all learning environments.

Cybersecurity in Education: Protecting Chromebooks from threats on the internet

Join us for a strategic discussion with Tom Baumgartner, Senior Manager, Cisco Security Service Edge (SSE) Product Marketing, and Nitin Kumar, SSE Technical Marketing Engineering Lead, Cisco Security, as they discuss some of the business risks of using generative AI, and how technology solutions from Cisco’s security service edge product family can help organizations ensure efficiency without sacrificing security.
 
 We’ll cover:
 
 How to mitigate risks of using generative AI by improving visibility and oversight
 Ways your organization can discover, assess, or control ChatGPT usage
 A demo of how both Cisco Umbrella and Cisco Secure Access support security across 70 (and counting) AI chatbot sites, as well as block unsafe ChatGPT content downloads

View this 25-minute webinar to get the insight you need to navigate AI usage safely.

Mitigate the Organizational Risks of Using Generative AI

In today's digital landscape, organizations face evolving cyber threats that can compromise sensitive information and undermine business operations. To combat these risks, it is crucial for security professionals to understand the attack vectors used by malicious actors and how to effectively mitigate them.

Join us for a webinar as we dive into the realm of attack vectors and explore proven strategies on how Duo can protect your organization. Whether you are an IT professional, a security enthusiast, or a decision-maker concerned about safeguarding your organization's critical assets, this webinar will equip you with the knowledge and tools to enhance your security posture and protect your digital assets effectively.

Mitigating Attack Vectors with Duo: Strengthen Your Security Defenses

In a world where data is king, and context is key, strong access management does not just continue to strengthen corporate security—it reshapes it. Today’s more sophisticated threats call for additional layers of security: not just phishing-resistant MFA, but also device trust, reactive policies, and threat detection.

Finding it hard to predict the future? We’ve got you. Diving into new data from the 2024 Duo Trusted Access Report, join us in analyzing how historical patterns provide insights into future possibilities. Learn how to navigate complexity with context and find simpler solutions to secure the identity perimeter, achieve security readiness, and strive for zero trust.

10 Key Findings and Insights from the 2024 Duo Trusted Access Report

Single Sign-On (SSO) is an important aspect of access management, which includes Multi-Factor Authentication (MFA), SSO and user and device posture policies for today’s hybrid workforce. With Single Sign-On, end users only need a single set of credentials to log into multiple websites and applications, both cloud and on-premises. This makes life easier for users since they don’t have to remember multiple passwords and provides administrators a centralized way to manage all accounts and govern which users have access to them.

Join Duo Technical Solutions Architect, Mubashir Mir, as he explains the benefits of Single Sign-On and how it helps users and organizations alike reduce reliance on and even stop using passwords altogether by adopting passwordless authentication.

Why Single Sign-On (SSO)?

TDR solutions are not new, in fact these days it’s hard to find a security vendor that doesn’t offer a solution, or is at least a technology partner with a TDR vendor. This gives organizations a plethora of options which may seem ideal, however it becomes challenging to not only understand how each solution works, but to also evaluate a solution’s ability to provide both security and business-related outcomes that add real value and address real pain-points.

This session presents the must-haves for a TDR solution to detect advanced threats across disparate products and vendors. We’ll also discuss the need for prioritized incident verification and prescriptive response automation which are key to delivering business outcomes that elevate productivity and build security policy resilience.

Evaluating Threat Detection and Response Solutions

Attend this session to learn:

-Best practices to mitigate advanced attack tactics such as MFA (Multi Factor Authentication) push bombing, man-in-the-middle and vulnerable devices
-How Duo can help implement zero trust access through strong user authentication, device verification and risk-based policies

Providing secure access to your organization's resources can be overwhelming. And meeting compliance and regulatory requirements increases stress. It is no surprise that the recently published Cybersecurity Readiness Index, a survey of 6,700 cybersecurity leaders from across the globe, revealed that more progress is needed to protect identity, networks, and applications. When you choose the right solution and adopt best practices to prevent unauthorized access, you can simplify security and gain peace of mind.

Watch this on-demand webinar as Duo Product Marketing Managers, Matt Brooks and Mike Rotar, discuss what to look for when evaluating access management solutions for your organization, and how to prevent attackers from gaining access.

Quick Wins! Securing Your Environment Made Easy

Duo’s new Risk-Based Authentication (now in public preview) dynamically detects potential threat signals and adjusts security requirements, in real time, to enhance security without overburdening the workforce. Duo’s goal is to protect trusted users and frustrate attackers, all while preserving the privacy of the workforce.

Join Advisory CISO, Wolfgang Goerlich, and Duo Product Marketing Manager, Jennifer Golden, in this webinar to learn more about what makes Duo’s solution unique and what features are available to customers today.

The Power of Risk-Based Authentication: Placing Users in the Driver's Seat

Zero trust adoption is on the rise, and while some view it as solely about securing remote user access, others recognize how zero trust builds security resilience - particularly when it comes to incident response.

Attend this webinar to hear TK Keanini, Cisco Secure CTO, and Brad Garnett, Director of Talos Incident Response discuss the impact a zero trust framework has on security resilience and share real stories of how zero trust security accelerates incident response.

How Zero Trust Accelerates Incident Response

76% of organizations experienced multiple account or credential compromises over the past 12 months, according to ESG’s 2023 research about the state of passwordless authentication in enterprise organizations. Recent prominent MFA-based breaches and friction in the end-user experience have reached the ears of IT and cybersecurity leadership. Now, IT security professionals are looking to address these risks by evaluating phishing-resistant and passwordless authentication methods but lack clarity on the use cases this technology fulfills. 
 
Join this engaging discussion with Cisco Duo Product Marketer, Matt Brooks, and ESG Senior Analyst, Jack Poller as they unpack the research findings to understand the evolution of multi-factor authentication and passwordless technologies, and how IT security professionals are responding to the changing threats landscape.

The State of Passwordless in the Enterprise

Zero trust conversations have evolved very quickly. Organizations of all sizes now know the value of zero trust in terms of improving user experience and enabling business transformation. Teams no longer ask ‘what is it’ but now want to know ‘where do I start and what do I do next’. Specifically, which capabilities to prioritize when rolling out zero trust access for users (employees and contractors) and their devices (managed and unmanaged). 

In a nutshell, organizations need a roadmap. 

Join us as we dig into key data from our Cisco Zero Trust Workshops and our solution guide “How to go from MFA to zero trust: A five-phase plan for securing user and device access to applications”. These resources guide our customers in implementing zero trust for securing user access to applications – wherever users are, using different types of devices, and wherever the apps reside.

Your Zero Trust Roadmap: Five Steps to Securing User Access to Applications

At this point, the fact that 80% of breaches can be traced back to compromised credentials seems to be a security industry constant. It’s like the speed of light. Year in, year out – it holds steady. But things have changed over time — there have been advances in authentication technology from stricter forms of MFA to federation to passkeys. Some of these advances are difficult to understand, but at Duo, we aim to make security simple. From small start-ups to large enterprises, our user-friendly security protects every click, every connection, every time. We’ve got you. 
 
 In this session, we’ll dive into the trends behind the compromised credentials statistic – and discuss a new paradigm to address this common identity-based threat.

Why Are We Stuck in Groundhog Day When it Comes to Compromised Credentials?

Breach Detection

Breach Prevention

Secure Access

Enterprise Security

Cyber Security

Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Why Are We Stuck in Groundhog Day When it Comes to Compromised Credentials?

Presented by

About this talk

More from this channel