Significant concerns regarding user-generated passwords have been raised by 94% of IT leaders and decision-makers across the U.S., Australia, Germany, France, and the U.K., half of whom noted the weak security of such passwords, TechRepublic reports.
Ninety-one percent of respondents noted being very or somewhat concerned regarding the possibility of password theft at their organizations, according to a report from Ping Identity and Yuibco. The findings also showed that password-related IT support incidents have increased by 30% on average, prompting increased worries of IT execs regarding help desk spending.
While 65% of surveyed IT leaders would adopt passwordless authentication, most of whom were inclined toward biometrics, most IT and business leaders did not have a sense of urgency regarding the implementation of such technologies, the report showed.
Organizations could foster passwordless authentication through centralized authentication solutions, strong collaboration between the IT/security and business departments, an intuitive user interface, and a limited rollout prior to expanded implementation, said Ping Identity Senior Product Marketing Manager Zain Malik.
An In-Depth Guide to Identity
Get essential knowledge and practical strategies to fortify your identity security.
While 427,000 Fortinet devices running on FortiOS, FortiProxy, FortiSwitchManager, and FortiPAM iterations impacted by the critical CVE-2024-23113 flaw, another 62,000 FortiManager instances remain susceptible to attacks leveraging the CVE-2024-47575 bug, also known as FortiJump.
Initial access to the targeted SharePoint server through the flaw was leveraged to breach a Microsoft Exchange service account with elevated privileges, deploy the Huorong Antivirus, and install Impacket, resulting in the deactivation of legitimate antivirus systems and lateral movement.
Other Linux-based network devices may have also been targeted by Pygmy Goat, as indicated by its utilization of a fake Fortinet certificate, a pair of remote shells, and several communication wake-up techniques.