54 per cent of security incidents were caused by the theft of login credentials, followed by ransomware and DDoS attacks, according to the latest Ponemon Institute report.
Also, 59 per cent of organizations are not revoking credentials they no longer use. This could be dangerous, as attackers could use brute force or social engineering to try to unlock these vulnerable systems and gain access to a company’s network.
50 per cent of all data breaches were caused by stolen login credentials, according to the Verizon Data Breach Investigations Report.
In its report, Verizon stated that stolen credentials are mainly used to target some form of web application. Web applications are one of the main attack vectors, as digital innovation leads companies to look for digital solutions and internet-enabled technology to streamline operations.
Automating tasks allows companies to operate more efficiently but requires connecting devices to the internet and granting remote access to third-party providers. This process could involve risks at any access point.
In order to reduce these types of attacks, it is essential to protect credential by using password vault that can help organizations manage passwords and ensure that they do not fall into the wrong hands.
The sources for this piece include an article in TheHackerNews.