Scalable PAM: adapting the control level to the context of the interventions Privileged Access Management (PAM) is a major security issue for organizations insofar as it allows the IT department to control who does what on its information system and to ensure the total security of privileged accounts. However, some PAM solutions offer a wide range of functionalities that are sometimes not suitable for some organizations that may have limited use of these privileged users. For this reason, deploying a scalable PAM product that adapts to the organization’s current context and can… Read More >>
Passwords: good practices to follow Although they are regularly criticized, passwords are still the most widespread means of authentication. If the passwordless approach tends to develop and to limit their use, they will remain, in many cases, the only means of authentication. To overcome the vulnerabilities of passwords, several good practices must therefore be implemented in order to strengthen the access security. Secure your passwords in 4 steps When it comes to passwords, you probably already know the most common best practices. However, not all… Read More >>
Remote maintenance: Which tools should you choose? Although remote maintenance is essential to the proper operation of organizations, it has certain cyber risks related to remote accesses. These risks can be reduced or even eliminated by using the right IT tools. Several solutions are commonly used for remote maintenance, such as remote-control software, VPNs, ZTNA (Zero Trust Network Access) or PAM (Privileged Access Management) solutions. However, these solutions are not equal in terms of cyber security. Remote maintenance: a performance challenge but also a cyber risk The… Read More >>
Fake President fraud: a scam that takes advantage of the teleworking boom Like ransomware, the Fake President fraud has taken advantage of the massive telework due to the health crisis to take off again since 2020. While in the case of ransomware, remote access technologies unsuited to telework are to blame, in this case it is the lack of face-to-face social interaction that is one of the major causes of the increase in this type of scam. How does a fake president fraud work? In a fake president fraud, a swindler who… Read More >>
Remote Control Software: A Dangerous Practice in a Telework Situation Although not suitable for teleworking, remote control software is unfortunately one of the tools used by companies to allow their employees to access their office workstations from home, from a personal computer. The relatively simple use of remote control software has sometimes made the security risks associated with this type of product seem less important. Remote control software is intended for remote maintenance with a user responsible for initiating the connection and monitoring the actions performed and is therefore clearly… Read More >>
Data Breaches: Can We Avoid Them? Data breaches are one of the most feared events for companies, since they discredit the company’s ability to protect its confidential data, including the personal data of its customers. If computer attacks are to blame, these data breaches are also sometimes due to the company’s employees: in most cases, they come from a simple human error, but it can also be a case of data theft ordered to an employee by a competitor of the target company, or an employee… Read More >>
How to Fight Against Shadow Admin? When it comes to privileged accounts, traceability is essential, but it is sometimes compromised by the use of shadow admin. This traceability, as well as real-time or a posteriori control of the administration actions allowed by the PAM (Privileged Access Management) should however be exhaustive to effectively protect the information system…. Read More >>
Cybersecurity Awareness: the Other Essential Aspect of Information Systems Security If we are used to talking about solutions and innovations that raise the overall security level of information systems, the other major aspect, cybersecurity awareness, deserves to be addressed with the same importance, as it is essential in the fight against cyber attacks. Several studies show that human errors by well-intentioned employees are the main threat to the security of information systems…. Read More >>
No Long-Term Telework Without Secure Remote Access Since the first lockdown, companies’ practices in terms of remote access have significantly evolved. It is now essential for organizations to make telework sustainable and institutionalized. While most organizations have implemented dedicated telework solutions and processes, many of them still do not have a real long-term telework strategy, which must combine ergonomics and security of remote access in any situation. A key issue for organizations The sustainability of teleworking has become a real issue for organizations, as teleworking has become… Read More >>
The new security perimeter for organizations Slowly but surely, we are experiencing a radical change in the world of networks and access security. To illustrate this in a caricatured way, we are moving from a situation when an organization’s network was inside its walls and the Internet outside, to a situation where everything is based on the Internet, which is shared by all organizations’ networks. The networks of companies are now permanently installed in the Internet network via cloud infrastructures that go beyond the physical boundaries… Read More >>