Security has an underlying defect: passwords and authentication
Cyberattacks are fueled by the shortcomings of business authentication controls. Bad things happen when access falls apart and credentials land in the wrong hands.
What are the main issues with passwords in cybersecurity?
Passwords have been the primary method of authentication for over 60 years, yet they are often untrustworthy. Cybersecurity experts highlight that the reliance on passwords creates a binary access system where knowing a password grants full access, making it a significant vulnerability. This has led to a recognition among cybersecurity leaders that the current access control system is fundamentally broken.
How do stolen credentials impact cybersecurity?
Stolen credentials are a leading entry point for cyberattacks, accounting for a significant portion of breaches. According to IBM Security, credential manipulation and attacks based on compromised identities are a crisis, with phishing and data leaks being common methods for obtaining these credentials. In fact, they represent nearly 90% of assets for sale on the dark web, underscoring their value to cybercriminals.
What are the alternatives to traditional password systems?
There is a growing interest in moving towards passwordless authentication methods, such as biometrics and cryptographic techniques like FIDO2. These alternatives aim to provide higher levels of assurance and security. However, the transition is complicated by the fact that many critical systems may not support these newer technologies yet, making a complete shift challenging in the near term.
Security has an underlying defect: passwords and authentication
published by PTech
PTech provides advanced technology solutions, fine-tuned to meet unique business needs. We offer you world-class security with top-rated agents, a superior digital phone service, and unlimited data backup. We deliver Peace of Mind through features such as Email Archiving and a universal password system. Our NordLayer VPN reshapes network access for modern firms. If data recovery fails, you don't pay. We're here to make your IT environment easily comprehensible and functional.
Sign in with LinkedIn