With evolving threats and cybercrimes, things will undoubtedly get worse before they get better. This is leaving many cybersecurity professionals to consider new and innovative ways of improving productivity, reducing burnout, and combatting the cybersecurity skills gap.

More cyber-attackers are employing some level of credential theft over other types of cyber threats. Recent data proves that credential protection, especially passwords, are essential to data security.

For better or worse, passwords aren’t going away anytime soon. As long as passwords are active, criminal hackers will use them to access organizations. Organizations need solid password policies to safeguard Active Directory against breached passwords to prevent hacker access.

Password-based authentication is both the first line of defense, and the weakest link, when it comes to securing your SaaS applications. We know that end-users default to poor password practices—recent reports found 99% of users reusing passwords either across work accounts, or between work and personal accounts.

According to iapp, almost half of all data breaches in 2022 began with stolen credentials and ransomware damages are expected to exceed $30 billion worldwide in 2023.

Attackers used SMS text messages as a delivery mechanism is the Twilio and Cloudflare attack. Additionally, the attackers seemed to have targeted specific employees and they demonstrated significant knowledge of who those employees regularly interacted with.