Virtualization Technology News and Information
Kaseya 2020 Predictions: Attackers are opening new doorways

VMblog Predictions 2020 

Industry executives and experts share their predictions for 2020.  Read them in this 12th annual series exclusive.

By Mike Puglia, CMO at Kaseya

Attackers are opening new doorways

I anticipate that 2020 will see credential stuffing attacks become one of the top exploits. This trend is being driven by three factors today:

  1. First, there a millions, even billions, of credentials available on the dark web.
  2. Second, phishing attacks to directly gain access to credentials are now a daily occurrence for virtually every organization and
  3. Finally, almost every organization uses some form of product that is accessible over the web whether that be Microsoft Office 365, G-Suite, Salesforce, and so on.

Additionally, the improvement of AI and bots allows attackers to harvest massive amounts of credentials and try them against popular tools. At a 0.1% to 0.25% success rate, it has become a low-cost, automated and simple way for attackers to gain access to organizations.Three technologies can thwart this type of attack:

  1. First, Multi-factor authentication (MFA) can protect logins, even if usernames/passwords are stolen - a technique that has been around since the 90's will finally come to the mainstream use. For instance, even consumer platforms such as banking sites now mandate MFA for all customers.
  2. Second, monitoring the dark web to know your exposure becomes critical - if you don't know what is out there about your users, you'll never be able to defend against it.
  3. Lastly, and most importantly, security awareness training and phishing simulation must be done for all employees - training the human targets is the only way to lower the success rate of future attacks in the escalating technology arms race.


About the Author

Mike Puglia 

Mike Puglia brings over 20 years of technology, strategy, sales and marketing experience to his role as Kaseya's chief customer marketing officer. He is responsible for overall customer marketing, management and development across Kaseya's portfolio of solutions.

Prior to joining Kaseya, Mr. Puglia was vice president of marketing for TimeTrade Systems, where he managed and executed on marketing programs and communications strategy. Mr. Puglia joined TimeTrade from, where he led the technical program management integration of real-time collaboration technologies into Salesforce's Chatter Social Enterprise platform.

Prior to his role at Salesforce, Mr. Puglia was vice president of marketing at Dimdim, a provider of cloud-based collaboration software, which was acquired by Salesforce in 2011.

Published Monday, December 09, 2019 7:15 AM by David Marshall
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<December 2019>