Every day, somewhere, a cybercrime gang is targeting the healthcare industry. That’s not an exaggeration; healthcare has become the most attacked industry in the world. Big hospital networks, small private practices and insurance companies have one thing in common: they all store the patient and medical data that attackers find so valuable.
Many organizations have already deployed and invested in an Active Directory Federation Services (ADFS) installation, providing basic authentication and access into cloud applications.
ADFS now supports limited MFA support via voice OTP, SMS OTP and Push to Accept technologies. This approach does provide a minimal approach to authentication, is it enough? The challenge is really bringing ADFS authentication up to world class levels, improving the ADFS authentication story, yet not having to replace ADFS.
The general feeling by security analysts and specialists around user authentication is that two factor authentication alone is not enough to protect against the misuse of stolen credentials. This is in part because many forms of second factor authentication can be exploited.
One such example is “Push-to-Accept”. This method utilizes something the user has (typically a mobile device) and something the user knows (username and password) for authenticating the user, but often can be easily exploited.
Working with identity and authentication in retail has some striking differences from that of other industries. In addition to being subject to compliance requirements like PCI, retail has unique challenges as a result of managing hundreds to thousands of locations across the globe. Some examples include:
Much talk has been made about the evolution of technology in healthcare. Many called for the transformation in 2009 & 2010, but as Todd Sullivan cites in his article, Healthcare is having an Ernest Hemingway moment, the transformation was not instant.
In recent years, Office 365 has become one of the leading cloud-based business applications. In fact, recent numbers show there are over 60 million commercial users of Office 365 and Microsoft are adding roughly 50,000 small businesses to the offering each month. With this high adoption, it is no wonder why it has become one of the most requested applications for Single Sign-On (SSO), edging out the predominate SaaS offering, Salesforce.
Ever notice something about surveys? While there are plenty out there about the threats rising on the IT landscape, there isn't always useful information about the controls and techniques leaders are using to stop them. And that's what we really want to know, right? Finding out where other organizations are struggling and where they're succeeding, and how they're approaching attacks, can provide a roadmap to strengthening your own security program.