Name: How to Prevent Attacks that Bypass MFA
Start: 2023-03-28T17:00:00Z
End: 2023-03-28T17:01:03.000Z
Location: BrightTALK
Rating: 4.5

Duo is a cloud-based security platform that protects access to all applications, for any user and device, from anywhere. It’s designed to be both easy to use and deploy, while providing complete endpoint visibility and control. 

Duo verifies users' identities with strong multi-factor authentication. Paired with deep insights into your users’ devices, Duo gives you the policies and control you need to limit access based on endpoint or user risk. Users get a consistent login experience with Duo's single sign-on that delivers centralized access to both on-premises and cloud applications.

With Duo, you can protect against compromised credentials and risky devices,  as well as unwanted access to your applications and data. This combination of user and device trust builds a strong foundation for a zero-trust security model.

TDR solutions are not new, in fact these days it’s hard to find a security vendor that doesn’t offer a solution, or is at least a technology partner with a TDR vendor. This gives organizations a plethora of options which may seem ideal, however it becomes challenging to not only understand how each solution works, but to also evaluate a solution’s ability to provide both security and business-related outcomes that add real value and address real pain-points.

This session presents the must-haves for a TDR solution to detect advanced threats across disparate products and vendors. We’ll also discuss the need for prioritized incident verification and prescriptive response automation which are key to delivering business outcomes that elevate productivity and build security policy resilience.

Evaluating Threat Detection and Response Solutions

Attend this session to learn:

-Best practices to mitigate advanced attack tactics such as MFA (Multi Factor Authentication) push bombing, man-in-the-middle and vulnerable devices
-How Duo can help implement zero trust access through strong user authentication, device verification and risk-based policies

Providing secure access to your organization's resources can be overwhelming. And meeting compliance and regulatory requirements increases stress. It is no surprise that the recently published Cybersecurity Readiness Index, a survey of 6,700 cybersecurity leaders from across the globe, revealed that more progress is needed to protect identity, networks, and applications. When you choose the right solution and adopt best practices to prevent unauthorized access, you can simplify security and gain peace of mind.

Watch this on-demand webinar as Duo Product Marketing Managers, Matt Brooks and Mike Rotar, discuss what to look for when evaluating access management solutions for your organization, and how to prevent attackers from gaining access.

Quick Wins! Securing Your Environment Made Easy

Duo’s new Risk-Based Authentication (now in public preview) dynamically detects potential threat signals and adjusts security requirements, in real time, to enhance security without overburdening the workforce. Duo’s goal is to protect trusted users and frustrate attackers, all while preserving the privacy of the workforce.

Join Advisory CISO, Wolfgang Goerlich, and Duo Product Marketing Manager, Jennifer Golden, in this webinar to learn more about what makes Duo’s solution unique and what features are available to customers today.

The Power of Risk-Based Authentication: Placing Users in the Driver's Seat

Zero trust adoption is on the rise, and while some view it as solely about securing remote user access, others recognize how zero trust builds security resilience - particularly when it comes to incident response.

Attend this webinar to hear TK Keanini, Cisco Secure CTO, and Brad Garnett, Director of Talos Incident Response discuss the impact a zero trust framework has on security resilience and share real stories of how zero trust security accelerates incident response.

How Zero Trust Accelerates Incident Response

76% of organizations experienced multiple account or credential compromises over the past 12 months, according to ESG’s 2023 research about the state of passwordless authentication in enterprise organizations. Recent prominent MFA-based breaches and friction in the end-user experience have reached the ears of IT and cybersecurity leadership. Now, IT security professionals are looking to address these risks by evaluating phishing-resistant and passwordless authentication methods but lack clarity on the use cases this technology fulfills. 
 
Join this engaging discussion with Cisco Duo Product Marketer, Matt Brooks, and ESG Senior Analyst, Jack Poller as they unpack the research findings to understand the evolution of multi-factor authentication and passwordless technologies, and how IT security professionals are responding to the changing threats landscape.

The State of Passwordless in the Enterprise

Zero trust conversations have evolved very quickly. Organizations of all sizes now know the value of zero trust in terms of improving user experience and enabling business transformation. Teams no longer ask ‘what is it’ but now want to know ‘where do I start and what do I do next’. Specifically, which capabilities to prioritize when rolling out zero trust access for users (employees and contractors) and their devices (managed and unmanaged). 

In a nutshell, organizations need a roadmap. 

Join us as we dig into key data from our Cisco Zero Trust Workshops and our solution guide “How to go from MFA to zero trust: A five-phase plan for securing user and device access to applications”. These resources guide our customers in implementing zero trust for securing user access to applications – wherever users are, using different types of devices, and wherever the apps reside.

Your Zero Trust Roadmap: Five Steps to Securing User Access to Applications

In a world where data is king, and context is key, strong access management does not just continue to strengthen corporate security—it reshapes it. Today’s more sophisticated threats call for additional layers of security: not just phishing-resistant MFA, but also device trust, reactive policies, and threat detection.

Finding it hard to predict the future? We’ve got you. Diving into new data from the 2024 Duo Trusted Access Report, join us in analyzing how historical patterns provide insights into future possibilities. Learn how to navigate complexity with context and find simpler solutions to secure the identity perimeter, achieve security readiness, and strive for zero trust.

10 Key Findings and Insights from the 2024 Duo Trusted Access Report

In this webinar you'll learn:

• How workforce needs have evolved and the challenges this presents
• Why the use of passwordless single sign-on is a more secure method to authenticate apps
• Why device trust is just as important as user trust
• What you should look for in a modern trusted access solution

The network perimeter has changed. So has the way users access applications and data on the network. Passwords are no longer a secure method to authenticate. And today’s workforce is more blended than ever. Employees, contractors and partners all need access to resources on your network from a multitude of devices, both company-issued and personal. How do you provide that secure access to avoid a breach which could cost you millions in financial and reputational damage?

Watch this webinar to learn more about Duo and why The NY Times just named us the best authenticator application!

Still Using Passwords to Access Apps from Your Devices? There's a Better Way

Join Duo Technical Solutions Architect, Mubashir Afzal Mir, as he shares an overview of Duo SSO which in conjunction with Duo’s flagship MFA, has helped organizations across the globe mitigate data breach risks while improving their end users’ experiences accessing applications.

What’s New with Duo Single Sign-On (SSO)

The rise of public cloud infrastructure and remote work have weakened network-based models of security. The network-first models have been replaced by the tenets of Zero Trust and Least Privilege. A core component of Zero Trust is placing user identity and associated entitlements at the center of security. It is now common to hear the refrain: ”Identity is the new perimeter.”

But, if identity is the new perimeter, why are we struggling to defend it? In the last 18 months, hackers have leveraged identity-based attacks to accomplish high profile and costly attacks on major brands. To help organizations bolster their identity perimeter, this webinar will cover core concepts of modern identity infrastructure and how attackers are targeting those components.

So, Identity is the New Perimeter. Why is it So Hard to Defend?

In today's digital landscape, organizations face evolving cyber threats that can compromise sensitive information and undermine business operations. To combat these risks, it is crucial for security professionals to understand the attack vectors used by malicious actors and how to effectively mitigate them.

Join us for a webinar as we dive into the realm of attack vectors and explore proven strategies on how Duo can protect your organization. Whether you are an IT professional, a security enthusiast, or a decision-maker concerned about safeguarding your organization's critical assets, this webinar will equip you with the knowledge and tools to enhance your security posture and protect your digital assets effectively.

Mitigating Attack Vectors with Duo: Strengthen Your Security Defenses

To stay ahead of modern-day attacks requires modern authentication. Cisco Duo has built an authentication prompt that delivers an arsenal of modern authentication methods to fit your users, environments, devices, and application needs.    

Based on a decade of experience securing our customer’s authentication experience Duo developed the Universal Prompt. It provides ubiquitous, easy to use, strong authentication methods for the vast array of applications used in enterprises.

How to Strengthen your Authentication with Duo

Duo’s leading access management platform protects access to all applications, for any user and device, from anywhere. It is designed to be easy to use, administer and deploy, while providing complete endpoint visibility and control.  

Duo’s solutions can be deployed across applications to help mitigate the most common authentication attacks including push phishing, one-time-password (OTP) phishing, attacker device enrollment, and device vulnerability exploits. It also helps organizations modernize and consolidate MFA and SSO services under one platform.

Quickly Turn your Security Readiness & Resilience Objectives into Outcomes

If your organization has started their “Passwordless Journey” you are probably aware of passkeys by now. Device bound, passkeys are essentially a new term for the FIDO2 WebAuthn standard. When they are allowed to be synchronized it is a new frontier, promising stronger security and better user experience, yet there are several considerations that need to be addressed.

The State of Passkeys in the Enterprise

Implementing Multi-Factor authentication (MFA) is one of the most effective ways to reduce the risk of a data breach. The popularity of cloud-based services and mobile authenticators applications have made it easy for organizations to adopt MFA solutions, which makes it hard for cybercriminals to gain unauthorized access and has brought about an evolution in attack tactics. Tactics such as MFA Fatigue, AKA prompt bombing, and Adversary-in-the-Middle (AiTM) phishing attacks are more targeted and sophisticated. Security professionals are calling for more secure authentication factors or phishing resistant factors where possible.

Join Nick Biasini, Head of Outreach for Cisco Talos and Ganesh Umapathy, Cisco Duo Product Marketing for an engaging discussion on how attackers are bypassing MFA and what you can do to prevent them.

How to Prevent Attacks that Bypass MFA

Cisco

Secure Access

Secure Cloud

Security

Multi-Factor Authentication

Password Management

Cyber Attacks

Cloud Security

Phishing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Prevent Attacks that Bypass MFA

Presented by

About this talk

More from this channel