Identity is the new perimeter
As was briefly explained in Chapter 1, Security Posture, the protection surrounding one’s identity must be enhanced, and that’s why the industry is in common agreement that identity is the new perimeter. This is because when a new credential is created, the majority of the time this credential is composed only of a username and password.
While multifactor authentication is gaining popularity, it is still not the default method used to authenticate users. On top of that, there are lots of legacy systems that rely purely on usernames and passwords in order to work properly.
Credential theft is a growing trend in different scenarios, such as:
- Enterprise users: Hackers that are trying to gain access to a corporate network and want to infiltrate without making any noise. One of the best ways to do that is by using valid credentials to authenticate, and be part of, the network.
- Home users: Many banking Trojans, such as...