Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter LinkedIn as the Trojan Horse at MGM: The Rising Threat of Social Engineering in IT Security Imagine, just for a moment, that the walls guarding your fortress – that formidable digital infrastructure your IT team-built brick by brick – …
MGM Data Breach: How Hackers Used Vishing to Target IT Help Desk Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Okta Urgent: Hackers Target IT Help Desks to Gain Super Admin ALERT Recent reports from Okta highlight a surge in cybercriminals targeting IT help desks via phones to access credentials and critical assets. It’s no longer a theoretical risk, …
Okta Urgent: Hackers target IT Help Desks to Gain Super Admin Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Will you be eaten by a wolf? – Even Little Red Riding Hood needs identity verification! Don’t we all remember Little Red Riding Hood as part of our warm childhood memories? It is surprising that she even had to …
Will you be eaten by a wolf? – Even Little Red Riding Hood needs identity verification! Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter AI Makes Perfect Impersonations: AI Scam will hit the Help Desks On July 7, ABC News covered a story of a mother who fell victim to a supposed AI voice scam, where it wrongly said that her child had …
AI Makes Perfect Impersonations: AI Scam will hit the Help Desks Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Stop being the Victim: Win the Battle against Social Engineering Attacks! [WEBINAR] Finn Jensen, FastPass CEO, has been invited by LogOn International to share his insights on various social engineering attacks in the industry today: How to identify and …
Stop being the Victim: Win the Battle against Social Engineering Attacks! [WEBINAR] Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Twitter Hack: Britton Pleads Guilty in Vishing Attack The Twitter hack of 2020 is now about to reach the legal end. The young Briton Joseph James O’Connor pleads guilty to US law enforcement. Even BBC has it as a …
Twitter Hack: Britton Pleads Guilty in Vishing Attack Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Identity Theft from the IT-department is the Achilles Heel for Identity Management Solutions This blog discusses the risk for identity theft of enterprise users’ accounts through the IT-department. It also presents a solution to protect internal processes and services …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Preventing Social Engineering Attacks: Strategies in Asia LOGON TO CYBERSECURITY PODCAST In this episode of LogOn to Cybersecurity Podcast, FastPass Founder, Finn Jensen, shared his insights and experience in dealing with social engineering attacks plus shared the most effective …
Preventing Social Engineering Attacks: Strategies in Asia [LOGON Cybersecurity Podcast] Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter How AI voice mimicking is a security risk Quickly evolving in sophistication, some AI voice-generating software requires just a few sentences of audio to convincingly produce speech that conveys the sound and emotional tone of a speaker’s voice, while other options need as …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Reddit Systems Hacked by a Sophisticated and Highly-targeted Phishing Attack Hackers have gained access to internal Reddit systems. They targeted Reddit employees with a sophisticated phishing campaign. They obtained an employee’s credentials, and then had access to internal systems …
Reddit systems hacked by a sophisticated and highly-targeted phishing attack Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter MitID øger intern sikkerhed MitId er rullet ud til alle danskere nu. Vi ser på MitId som en autentifikationsmetode til at skabe sikker forbindelser mellem borgere og det offentlige/banker. MitID bør imidlertid også anvendes til at skabe en sikker …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Mailchimp breached twice by spear phishing against IT-department Email marketing giant Mailchimp announced it was hacked in January 2023 by a social engineering attack. The fact that the same attack type was successful in March 2022 shows the potential …
Mailchimp breached twice by spear phishing against IT-department Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter What are the 10 best SSPR solutions? With hundreds of large customers we have gained a lot of experience with customers’ interests and questions when they are about to decide for a new SSPR solution (Self-Service Password Reset). Often, …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter The Uncomfortable Truth about IT Crime against Enterprises Your next IT breach will probably start when a “friend” convinces someone else to give away a password. This doesn’t require any IT skills! The facts are probably known to …
The Uncomfortable Truth about IT Crime against Enterprises Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter 50% of Data Breaches can be Attributed to Leaked Credentials Hacking an IT-system is often like a puzzle and the hacker needs all the pieces to be successful. In 50% of data breaches, a password is required says Verizon …
50% of Data Breaches can be Attributed to Leaked Credentials Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter MFA Fatigue: Passwords are still important Have you heard of “MFA Fatigue”? Neither had I! You might however have seen that Uber, Cisco, Microsoft have had data breaches recently– all including MFA Fatigue, so it is time to consider …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter 69% of IT Departments have been Targeted by Vishing Attacks Are IT departments victims of social engineering attacks? And if so, how is it done and is it significant? Our experience is that the idea of social engineering is …
69% of IT departments have been targeted by Vishing attacks Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Vishing cases have increased almost 550%! Vishing (voice phishing) cases have increased almost 550 percent over the last twelve months (Q1 2022 to Q1 2021), according to the latest Quarterly Threat Trends & Intelligence Report from Agari and PhishLabs. In …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter CISCO’s Corporate Network breached with Vishing method Network equipment manufacturer giant Cisco, confirmed on 11 August 2022, that their corporate network was breached by the Yanluowang ransomware group and they were able to obtain access to Cisco’s employees’ accounts. …
CISCO’s Corporate Network breached with Vishing method Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter How Social Engineering Attacks breach GDPR The consequences of GDPR data breaches can be very hefty for all organizations. The penalties might be hefty, but more important are the financial loses and the damages made against the individuals hit …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Who watches the Watchmen? And who watches the Passwords? As the watchmen watch out for us, the passwords protect us and the company assets. But who watches the passwords? “Who or how do you protect your passwords?”: A line …
Who watches the Watchmen? And who watches the Passwords? Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin 𝕏 Share on Twitter Twitter Ways to protect the password before the user receives their first password Nobody wants a user’s password to be in the hands of other people than the user herself. We do however have situations where the user needs help …
Ways to protect the password before the user receives their first password Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter FastPassCorp joins ServiceNow Partner Program FastPass integrates with ServiceNow to protect the service desks against social engineering COPENHAGEN, Denmark — February 16,2022 — FastPassCorp today announced it has joined the ServiceNow Partner Program and is releasing a new integration with …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter FastPass IVM certified for ServiceNow Store FastPass IVM has been certified by ServiceNow for the ServiceNow Store. This means that ServiceNow customers now can find information about the integration between FastPass IVM and ServiceNow Store and can connect directly to …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter A hacker attack on the service desk happened for Robinhood. It happened for Twitter. 83% of service desk managers fear it can happen for them. Are YOU concerned? All organizations have an IT service desk to help users cope with …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter June 4, 2021 FastPassCorp and partner KSS of UK join forces to increase customer value The leader in Self-Service Password Reset (SSPR) and Identity Verification solutions FastPassCorp takes over the British distributor Knowledge Secure Systems Ltd (KSS) in an equity-based …
FastPassCorp and partner KSS of UK join forces to increase customer value Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter Why SSPR fails and what to do about it Many self-service password reset solutions (SSPR) have very low user adoption rates, even close to 20 percent. Understanding why this is so is necessary to understand how to improve SSPR solutions …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter How to Avoid Weak Passwords in Active Directory Weak or stolen passwords are involved in more than 80% of data breaches according to Verizon DBIR. This poses a risk and is a common concern among CISOs (Chief Information Security Officer), …
How to Avoid Weak Passwords in Active Directory? Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter FastPass V4 – Secure Enterprise Passwords More than 80% of data breaches involve a stolen password according to Verizon’s Data Breach Investigation Report. So, the most important security action for any IT organization must be to mitigate this. In a …
All IT projects should have a business case, specifying the benefits we expect. For Self-Service Password Reset SSPR projects or password synchronization projects, it is my experience that the majority of corporations have a clear idea of what the objectives are. Reduce the number of password calls to the service desk by a certain number …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter Manager Approval in Self-Service Is password self-service secure? The most frequently used verification tests in SSPR solutions are questions/answers and SMS codes. Security experts question the security of both tests. Q/A might be researched and guessed by hackers through social …
In April 2020, FastPassCorp announced Identity Verification Client -IVC- as a new module for FastPass Enterprise. The FastPass Enterprise has for many years been highly regarded as the leading Self-Service Password Reset (SSPR) solution in the market, covering all corporate passwords and available for on-premise and cloud. After 6 months we however see very high …
BBC has an in-depth analysis of the Twitter hack, and how the hackers used phones to exploit the service desk at Twitter In the article, Spear-phishing was defined as a targeted attack designed to trick a number of people into handing out information such as passwords for twitter account and other confidential information. Not all the employees …
BBC News: ”Twitter hack: Staff tricked by phone spear phishing scam” Read More »
Who owns Identity Verification in Identity Management? Almero Stein, Chief Technology Officer of Integralis sits down with FastPassCorp’s CEO Finn Jensen to talk about accountability of Identity Verification in an organization. Q1: Where do the real warm people belong in Identity? Almero: Typically, we refer subconsciously to identities as warm body people, but it so much more. Q2: How do we control …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter Lessons Learned from the Twitter Hack 2020 The Twitter hack of 15th of July 2020 proofs that Hackers go targeted for service desk employees. Is there anything for you to learn from the Twitter hack? We know the outcome: Criminals …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter Verizon DBIR 2020: “..the human element is the most important element to a CISO”. Gabriel Bassett, Information Security Data Scientist from the Verizon Data Breach Investigations Report team says: “I think the human element is the most important element to a …
Verizon Investigations Report: Human Element is the most important Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter High5 Series: Ethical Hacker from Denver explains how companies are attacked through Service Desks’ emotions Brian Self a Certified Information Systems Security Professional (CISSP) & ethical hacker has been interviewed by FastPassCorp’s CEO Finn Jensen about Social Engineering in Service …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter Work From Home Challenges for IT Support Service Desk When your company works from home, that’s 3 new challenges for the service desk! Overnight, all over the world, users are staying at home – and working from home.This requires new …
Work From Home Challenges for IT Support Service Desk Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter You might be in trouble if your user verification is SMS-dependent Now that most employees are working from home, calls to the Service Desk will come externally. For some security policy, SMS authentication is required to verify their identity. But …
You might be in trouble if your user verification is SMS-dependent Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter Service desks are vulnerable for password attacks – See what to do in 2020 The service desk has the key to the door to protected data and systems. How do you prevent that the keys are given away? Passwords are …
Service desks are vulnerable for password attacks – See what to do in 2020 Read More »
At FastPassCorp, we believe that we now sow the seeds for 2020’s success. Step into 2020 with a clear understanding and plan for how your company can benefit from Self Service Password Reset with our full guide “6 Steps to success with Password Self-Service”. As password calls to service desks in the average count for 20-30% of all calls, …
Reduce the risk of data breach in 2020 with Password Self Service Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter 5 reasons why users reject self-service password solutions The first step in improvement is the understanding of your challenges! You might have experienced low adoption of your self-service of password reset (SSPR) solution like many others?According to the Service Desk …
5 reasons why users reject self-service password solutions Read More »
With more than 10 years of experience working with large organizations and partners, we have gained deep experience in password-related risks and know how to reduce them. The free self-assessment report by FastPassCorp will give you a 360-degree view of the corporate present status of password policy and processes and point to areas of improvement. …
Speed up your corporate security with Self-Assessment Tool Read More »
The article “Password Obituary: But is the Humble Password Really Dead?” be Finn Jensen, CEO of FastPassCorp was recently released. Now Spanish and German versions are available. Download below and enjoy! Passwort Nachruf: Aber ist das Passwort wirklich tot? Download Obituario de contraseña: Pero, ¿está la humilde contraseña realmente muerta? Download The English version is …
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter Password Obituary: But is the Humble Password Really Dead? by Finn Jensen, CEO of FastPassCorp *You may find German/Spanish versions of the article below The humble password must have read its own obituary many times in recent years given the …
Password Obituary: But is the Humble Password Really Dead? Read More »
Home » Blog Share on Facebook Facebook Share on Linkedin Linkedin Share on Twitter Twitter Is Windows’ strong password policy as strong as you need? Enabling Windows’ strong password policy requires that users comply with 3 out of 5 character requirements. This will not protect your users’ accounts from attacks based on guessing or breaches …
Is Windows’ strong password policy as strong as you need? Read More »
The most common way to protect data and provide user authentication is passwords, but nowadays we face a slow decline in their popularity. To sustain acceptable security standards, both businesses and users look for alternatives to their password-based systems. Today biometrics are increasingly popular for authentication, like fingerprint and facial scans. The technology is based …
Passwords vs. Biometrics and Multi-factor Authentication Read More »
In a Service Desk Institute (SDI) research it is revealed, that the service desk will often be the entry point for a deceptive attack. As the SDI report says: “As to the reality of the risks of unauthorised access to end-user data, Figure 9 shows that 27% of respondents stated that their organisation had identified …
Has your service desk been attacked for passwords? Only 42% haven’t been attacked! Read More »
Several years ago one of the most well-known hackers Kevin Mitnick (see below) wrote a book on the art of deception, as the easiest way to get access to data and computer systems. Kevin Mitnick knows all there is to know about ways to breach into computer systems with hacker tools. Still he claims that …
Can a hacker get access to sensitive corporate data without the use of advanced hacking technology? According to a new survey report from Service Desk Institute then it seems to be very easy indeed! As shown in this illustration 83% of respondents think that, despite the controls being in place, it’s still possible for a …
83% of IT services desks fear they might give passwords to criminals! Read More »
Since the beginning of remote use, IT passwords have been an integrated part of the users’ interface with IT systems. They have never been loved but have been accepted as a necessary evil. It is said that users don’t like them as they are hard to remember, and so cause trouble when doing the daily …
Myths and realities on the death of passwords for corporate use. Read More »
Can your service desk reduce cost per user by 50% in the next 5 years? According to Gartner then this is necessary if you will keep up against the large service providers. Gartner has researched the costs of running a modern service desk or the cost per ticket on an average. The cost per user …
Can your service desk survive the competition from managed service providers? Read More »
