Name: Why Are We Stuck in Groundhog Day When it Comes to Compromised Credentials?
Start: 2024-06-05T13:29:00Z
End: 2024-06-05T13:29:37.000Z
Location: BrightTALK
Rating: 5

Duo is a cloud-based security platform that protects access to all applications, for any user and device, from anywhere. It’s designed to be both easy to use and deploy, while providing complete endpoint visibility and control. 

Duo verifies users' identities with strong multi-factor authentication. Paired with deep insights into your users’ devices, Duo gives you the policies and control you need to limit access based on endpoint or user risk. Users get a consistent login experience with Duo's single sign-on that delivers centralized access to both on-premises and cloud applications.

With Duo, you can protect against compromised credentials and risky devices,  as well as unwanted access to your applications and data. This combination of user and device trust builds a strong foundation for a zero-trust security model.

Attackers today expect you to have some sort of MFA, and they're bypassing traditional defenses and turning your strongest security control into a potential vulnerability. The stats are stark: 60% of breaches involve identity as a key component, and 40% of compromises feature MFA issues, from misconfigurations to outright bypasses. The threat isn't just at the login screen anymore; it spans your entire identity lifecycle – from enrollment to help desk tickets, and even after a user has authenticated once! The good news? Phishing-resistant MFA is the answer, and Duo is changing the game. Forget clunky hardware tokens, complex setups, and arduous deployments. Duo delivers true end-to-end phishing resistance that's easy to implement, balancing elite enterprise-level security with a seamless user and admin experience.

MFA is Dead: Long Live End-to-End Phishing Resistance

AI-driven attacks are accelerating identity security growth and system modernization, with rising conversations around protecting the cutting edge of AI work while balancing legacy applications. It’s no surprise that traditional identity is failing. In over 50% of incidents where attackers targeted MFA deployments, identity and access management (IAM) applications were their first stop after initial compromise to escalate privileges and move laterally with more permissions. There are two key drivers behind these breaches: outdated protection and complexity. In this webinar, you will learn: The ways AI can be a double-edged sword in identity security Actionable top-of-mind and trend insights from IT and cybersecurity leaders How to set robust, consistent security policy that won’t frustrate your users How Duo can help make brokering and securing user identity simple from the start

Modernize IAM for the Age of AI: Simplify and Secure Your Identity Security with Duo

Rethinking how to protect your expanding network infrastructure from evolving threats? You’re not alone. With the proliferation of applications, AI technologies, and mobile workers, a more robust and flexible security approach is critical to seal every gap. 
 
Introducing Cisco Hybrid Mesh Firewall.  
 
Join this webinar and discover how to seismically shift the way you protect your AI-ready data center. This highly distributed security fabric stops advanced threats, protects application vulnerabilities, and activates zero-trust segmentation across environments.  

In this session, you’ll learn about unified cloud management and why having a centralized interface is critical for security enforcement in hybrid environments.  
 
You’ll also discover how to: 
 
- Safeguard key boundaries while protecting against zero days and hidden threats within encrypted traffic  
- Reduce your attack surface and contain the blast radius with coarse and fine-grained segmentation  
- Protect the development and deployment of AI applications to secure your AI transformation  
- Leverage Hybrid Mesh Firewall and its AI-native rule engine to prioritize vulnerabilities and close exploit gaps

Protecting the AI-Ready Data Center with Hybrid Mesh Firewall

Learn best practices for implementing Duo with Entra ID External Authentication Methods and gain valuable insights into maintaining a robust security posture.

Meet Azure MFA Mandate: Duo + Entra ID External Auth Methods

Whether you're an IT professional or a decision-maker, this webinar is designed to help you stay up to date with Duo Single Sign-On (Duo SSO). Join Colin Medfisch, Landon Greer, and Mike Rotar as they delve into the exciting updates and enhancements that are enabled by Duo SSO, providing valuable insights and practical guidance for the use cases your organization cares about most.

Harmonize Access Control: What's New with Duo Single Sign-On (SSO)

This year’s 2024 Summer Olympics led to several inspiring, noteworthy, and viral moments—from nail-biting basketball victories to gravity-defying surfers. Unsurprisingly, high-profile, international sporting events like the Olympics are also key targets for cyberattacks; the Tokyo Games in 2020 saw over 450 million cyberattacks, with Paris estimating eight times more. The Games are a prime example of complex IT ecosystems with several distinct groups of identities that need to be protected. 
 
Luckily advancements in cybersecurity technologies and strategies mitigate the risks of increasingly novel identity-based attack tactics. In this webinar, learn through the context of Olympic-level security threats how Duo’s latest innovations can help you win against attackers and defend your organization’s digital gold.

“Ring the Bell” with Gold-Standard Identity Security from Duo

Recent breaches, including a prominent data warehousing company, have sent shockwaves through the tech community, and this is a stark reminder that no organization, no matter the size, is immune to cyberattacks. 

In this webinar, identity security expert, Mike Rotar, will highlight five ways to combat identity attacks – starting with the current attack landscape, explore the lessons learned from recent attacks, and how Duo can be your ally in safeguarding your identities from ‘low-hanging fruit’ identity attacks in the wild. Hopefully, by the end of the session, attendees will feel equipped to dramatically improve their identity defenses – because at Duo, we’ve got you!

5 Ways Duo Helps you Combat Identity Attacks

Most people know that identity-based attacks are on the rise. The cybersecurity headlines seem full of breaches that involve identity as a key target. But, just because a problem is prevalent, doesn’t mean solutions to the problem are easy to implement. In fact, it can often feel overwhelming to break down the problem of identity-based attacks into concrete actions that will help improve defenses.

In this webinar, cybersecurity expert, Ted Kietzman, will highlight three key strategies to improving identity security – starting at the conceptual level and then diving deeper into descriptive examples of how each will help strengthen the identity perimeter. Hopefully, by the end of the session, attendees will feel equipped to dramatically improve their identity defenses – because at Duo, we’ve got you!

3 Concrete Ways to Improve Your Identity Security

With an industry-wide move to a zero trust security approach, the user’s identity has become the new security perimeter. Data from breach investigation reports clearly shows how the attackers have adapted and followed this shift. Most breaches today have an identity component and the identity is now under attack. So what happens next?

In this webinar we look at why these attacks succeed, how you can gain better visibility into the true identity security posture of your systems, and how the authentication processes can be hardened with new and existing tools.

Identity Under Siege: Strategies for Enhancing Security in a Zero Trust World

Your security is our priority. Join tech experts in our upcoming webinar to see how Cisco Duo’s newest innovations from RSAC 2024 can bolster your defenses. We’ll share how Duo’s powerful new integration with Cisco Identity Intelligence enables you to not only prevent sophisticated identity attacks, but also detect and respond to them with unmatched efficiency.

Also on the agenda? Discover how you can say goodbye to endless authentication requests with Duo Passport, a solution that closes security gaps and streamlines access to resources without unnecessary friction.

We know that strong solutions work together. Get the latest on Duo’s new partner integrations with Microsoft and Google that help deliver stronger security and increased productivity.

Bolster Your Defenses with Continuous Identity Security from Duo

You’ve no doubt heard the phrase, “Attackers don’t hack anyone these days. They log on.” By obtaining (or stealing) valid user account details, an attacker can gain access to a system, remain hidden, and then elevate their privileges to “log in” to more areas of the network.

As a result of the level of access stolen credentials can provide, the use of valid accounts is prevalent across the threat landscape. Not only is it the second most common MITRE ATT&CK tactic, but the rise of MFA and an increase in basic phishing awareness means adversaries have gotten more creative. Often, this ends with the user being targeted for possible manipulation as part of an “insider attack.”

But don't worry, at Duo, we've got you. To illustrate ways in which security practitioners can help defend against the techniques employed in credential stealing attacks, this webinar will break down an identity attack piece by piece. There will also be a discussion of methods and mechanisms to prevent or detect these techniques to stop breaches or limit their impact.

How Attackers Steal Credentials to Gain Stealthy Access to Your Organization

Join us for a Webinar on demand with Negisa Taymourian and Christian Clasen from the Cisco Umbrella product team, as they share best practices and practical tips to help your institution stay ahead of threats.
 
 We’ll cover:
 
 Techniques and tactics attackers are using in the education sector
 How Cisco’s Security for Chromebook provides a safer internet experience for students on- and off-campus, with robust defense against phishing attacks
 A demo of Umbrella’s capabilities in a Chromebook environment

Join us to equip yourself with the knowledge and tools to create a safer internet experience for students across all learning environments.

Cybersecurity in Education: Protecting Chromebooks from threats on the internet

Join us for a strategic discussion with Tom Baumgartner, Senior Manager, Cisco Security Service Edge (SSE) Product Marketing, and Nitin Kumar, SSE Technical Marketing Engineering Lead, Cisco Security, as they discuss some of the business risks of using generative AI, and how technology solutions from Cisco’s security service edge product family can help organizations ensure efficiency without sacrificing security.
 
 We’ll cover:
 
 How to mitigate risks of using generative AI by improving visibility and oversight
 Ways your organization can discover, assess, or control ChatGPT usage
 A demo of how both Cisco Umbrella and Cisco Secure Access support security across 70 (and counting) AI chatbot sites, as well as block unsafe ChatGPT content downloads

View this 25-minute webinar to get the insight you need to navigate AI usage safely.

Mitigate the Organizational Risks of Using Generative AI

In today's digital landscape, organizations face evolving cyber threats that can compromise sensitive information and undermine business operations. To combat these risks, it is crucial for security professionals to understand the attack vectors used by malicious actors and how to effectively mitigate them.

Join us for a webinar as we dive into the realm of attack vectors and explore proven strategies on how Duo can protect your organization. Whether you are an IT professional, a security enthusiast, or a decision-maker concerned about safeguarding your organization's critical assets, this webinar will equip you with the knowledge and tools to enhance your security posture and protect your digital assets effectively.

Mitigating Attack Vectors with Duo: Strengthen Your Security Defenses

In a world where data is king, and context is key, strong access management does not just continue to strengthen corporate security—it reshapes it. Today’s more sophisticated threats call for additional layers of security: not just phishing-resistant MFA, but also device trust, reactive policies, and threat detection.

Finding it hard to predict the future? We’ve got you. Diving into new data from the 2024 Duo Trusted Access Report, join us in analyzing how historical patterns provide insights into future possibilities. Learn how to navigate complexity with context and find simpler solutions to secure the identity perimeter, achieve security readiness, and strive for zero trust.

10 Key Findings and Insights from the 2024 Duo Trusted Access Report

Single Sign-On (SSO) is an important aspect of access management, which includes Multi-Factor Authentication (MFA), SSO and user and device posture policies for today’s hybrid workforce. With Single Sign-On, end users only need a single set of credentials to log into multiple websites and applications, both cloud and on-premises. This makes life easier for users since they don’t have to remember multiple passwords and provides administrators a centralized way to manage all accounts and govern which users have access to them.

Join Duo Technical Solutions Architect, Mubashir Mir, as he explains the benefits of Single Sign-On and how it helps users and organizations alike reduce reliance on and even stop using passwords altogether by adopting passwordless authentication.

Why Single Sign-On (SSO)?

Attend this session to learn:

-Best practices to mitigate advanced attack tactics such as MFA (Multi Factor Authentication) push bombing, man-in-the-middle and vulnerable devices
-How Duo can help implement zero trust access through strong user authentication, device verification and risk-based policies

Providing secure access to your organization's resources can be overwhelming. And meeting compliance and regulatory requirements increases stress. It is no surprise that the recently published Cybersecurity Readiness Index, a survey of 6,700 cybersecurity leaders from across the globe, revealed that more progress is needed to protect identity, networks, and applications. When you choose the right solution and adopt best practices to prevent unauthorized access, you can simplify security and gain peace of mind.

Watch this on-demand webinar as Duo Product Marketing Managers, Matt Brooks and Mike Rotar, discuss what to look for when evaluating access management solutions for your organization, and how to prevent attackers from gaining access.

Quick Wins! Securing Your Environment Made Easy

At this point, the fact that 80% of breaches can be traced back to compromised credentials seems to be a security industry constant. It’s like the speed of light. Year in, year out – it holds steady. But things have changed over time — there have been advances in authentication technology from stricter forms of MFA to federation to passkeys. Some of these advances are difficult to understand, but at Duo, we aim to make security simple. From small start-ups to large enterprises, our user-friendly security protects every click, every connection, every time. We’ve got you. 
 
 In this session, we’ll dive into the trends behind the compromised credentials statistic – and discuss a new paradigm to address this common identity-based threat.

Why Are We Stuck in Groundhog Day When it Comes to Compromised Credentials?

Breach Detection

Breach Prevention

Secure Access

Enterprise Security

Cyber Security

Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Why Are We Stuck in Groundhog Day When it Comes to Compromised Credentials?

Presented by

About this talk

Duo Security - Cisco