Home / Companies / SSOJet / Blog / Post Details
Content Deep Dive

The $10 Cyber Threat Responsible for the Biggest Breaches of 2024

Blog post from SSOJet

Post Details
Company
Date Published
Author
Rajveer Singh
Word Count
466
Company Posts That Month
24
Language
English
Hacker News Points
-
Summary

Identity attacks have increased significantly, highlighted by several major breaches, including the 2024 attack on Snowflake customers, which affected over 165 organizations by exploiting stolen credentials obtained from infostealer infections dating back to 2020. Many of these breaches, such as those involving Change Healthcare, Disney, and Microsoft's Office 365, were facilitated by the absence of multi-factor authentication (MFA), despite the ongoing push for its adoption. This situation is exacerbated by a growing reliance on third-party applications and the prevalence of infostealer malware targeting all credentials on devices. The shift in attack strategies towards direct account compromises presents new challenges for security teams, who must now contend with a complex array of managed and unmanaged SaaS applications. While threat intelligence on stolen credentials is plentiful, accurately identifying the active use of such credentials remains difficult. Push Security proposes utilizing browser-based telemetry to monitor login activities, assess password strength, and analyze MFA status, thereby improving the detection of credential misuse and encouraging broader MFA adoption.

Trends Found in this Post

No tracked trend matches for this post yet.