Privileged access management

Vulnerability Management

Ubuntu affected by 10-year-old flaws in needrestart package

Laura FrenchNovember 20, 2024

The five vulnerabilities could lead to local privilege escalation without user interaction.

Ransomware

Three common privilege access mistakes that can lead to a ransomware incident

Eric WoodruffOctober 31, 2024

Here’s how protecting against these three common mistakes can prevent ransomware attacks.

Identity

Moving beyond legacy IAM to better secure the identities of a hybrid workforce

Paul WagenseilOctober 25, 2024

Hybrid environments face challenges when using legacy IAM platforms. Here’s how a modern IAM solution and best identity-management practices can strengthen your security posture.

SailPoint President Matt Mills discusses the role of privilege in today’s enterprises during his keynote opening Navigate 2024.

Privileged access management

Navigate 2024: Privilege Task Automation: Simplifying PAM Implementation

Anne SaitaOctober 23, 2024

We spoke with SailPoint President Matt Mills about the future of this technology while at the Orlando conference.

Many different letters, numbers and special symbols, and silhouette of key as symbol of password. Concept of strong password creating, password-protected data, information security

Identity

Experts say MFA is no longer enough for enterprises

Shaun NicholsOctober 11, 2024

The UK’s cyber watchdog says that companies need to be more mindful with how they handle their multi-factor authentication.

Identity

Okta releases how-to guide for tackling admin sprawl: Key takeaways

Paul WagenseilSeptember 6, 2024

The relentless creep of administrative privileges threatens the security of every organization. Here’s how to keep the sprawl in check.

Endpoint/Device Security

Interview with ThreatLocker: Is Application Allowlisting Making a Comeback? – Danny Jenkins – ESW #374

August 29, 2024

I often say that it isn't the concepts or ideas in cybersecurity that are bad, but the implementations of them. Sometimes the market timing is just wrong and the industry isn't ready for a particular technology (e.g. enterprise browsers). Other times, the technology just isn't ready yet (e.g. SIEMs needed better database technology and faster stora...

Developer programmer using laptop with warning triangle sign for alert found error and maintenance concept

Threat Intelligence

Microsoft-signed driver leveraged by HotPage adware

SC StaffJuly 19, 2024

Aside from performing code injections into remote processes, the distributed kernel driver also allows system data exfiltration to a remote server connected to Hubei Dunwang Network Technology Co., Ltd, according to an ESET analysis.