Stolen credentials the leading cause of cyberbreaches in 2023
ManageEngine and Check Point to tackle rising mobile threats
CISO news
Stolen credentials the leading cause of cyberbreaches in 2023
S tolen credentials through phishing attacks were the most common cause of cyberbreaches among UK businesses last year , a new study has revealed .
Cybersecurity firm IDEE commissioned an independent survey of more than 500 IT and cybersecurity professionals within UK businesses . It found that 61 % of businesses experienced a cyberbreach in 2023 , with 25 % suffering three or more .
“ The cyber industry ’ s ‘ best ’ solutions in recent years have tried to bolster security with additional authentication factors like OTPs , push notifications or QR codes , but these methods remain tethered to centrally stored passwords and are therefore susceptible to phishing attacks .”
When asked to name the cause or causes of their most recent breach , 35 % said it was the result of stolen credentials ( passwords and tokens ) through phishing attacks , making it the most common reason . The next most frequently selected factor with 29 % was ‘ a vulnerability that was not patched by their cybersecurity solution ’.
The data also raises questions about the efficacy of password-based Multi-Factor Authentication ( MFA ) solutions , with 23 % indicating that their MFA solution was bypassed or compromised in their latest breach . The same number ( 23 %) suffered a breach due to a backdoor attack ( malware that sidesteps authentication procedures to gain access ).
Al Lakhani , CEO of IDEE , said : “ The data perfectly encapsulates the fundamental flaw behind so many MFA solutions : they are password reliant .
ManageEngine and Check Point to tackle rising mobile threats
anageEngine has integrated Endpoint Central , its flagship unified endpoint management solution , and Check Point ’ s
M
Harmony Mobile , a leading mobile threat defence solution , to help IT security teams automate the remediation of mobile threats .
The integration between the solutions addresses the increasing number of mobile threats that continue to circumvent OS-native security measures .
These threats range from traditional malware to more sophisticated phishing attacks and spyware .
The integration also fosters synergy between the solutions offered by both vendors , empowering joint customers to streamline processes for mobile threat detection , prioritisation and remediation .
“ We are excited to partner with Check Point to enhance our mobile security capabilities , empowering customers with advanced and comprehensive endpoint security .”
Jason Min , Head of Business Development , Check Point , said : “ By integrating Harmony Mobile with Endpoint Central , organisations can achieve holistic endpoint management and security , seamlessly addressing the challenges posed by the rapid proliferation of mobile devices in the workplace .
“ This integration empowers organisations to identify and remediate device , network and app-based threats across all enterprise endpoints while maintaining operational efficiency .”
This collaborative approach enhances operational efficiency – offering a more effective and seamless experience for organisations tackling mobile security challenges .
“ In our journey to equip IT security teams to fight against the evolving threat landscape , we have been offering a wide range of security solutions from a unified platform ,” said Mathivanan Venkatachalam , VP , ManageEngine .
WWW . INTELLIGENTCISO . COM 13