Results:

While CIOs say they are concerned about the security risks SSH machine identities pose, Venafi data indicates they seriously underestimate the scope of these risks. More

Venafi, the provider of machine identity management, finds that malware attacks using machine identities doubled from 2018 to 2019, including high-profile campaigns such as: TrickBot, Skidmap, Kerberods and CryptoSink.More

"Machine identity capabilities have become commoditised and are being added to off-the-shelf malware, making it more sophisticated and harder to detect."More

Despite the prolific usage of TLS certificates within organisations, many CIOs aren't concerned about security risks associated with TLS machine identities.More

"Our team is thrilled to join Venafi so we can accelerate our plans to bring machine identity protection to the cloud native stack, grow the community and contribute to a wider range of projects across the ecosystem.” More

“Powerful attack methods, like establishing backdoors with machine identities, are now available as commodity malware, making it harder for security professionals to defend against these attacks.”More

Organisations worldwide could recover a collective total of between US$51 billion to as much as US$72 billion just by repairing their poorly protected machine identities.More

Only 10% of organisations believe they have complete and accurate intelligence over all SSH machine identities.More

Venafi has released the findings of its latest survey, revealing 75% of DevOps professionals say certificate issuance policies slow them down.More

These mistakes increase security risks and negatively impact the reliability and availability of business-critical network resources, Venafi has found. More

Less than half of DevOps professionals believe developers always request certificates that serve as machine identities through authorised channels.More

The total number of certificates using lookalike domains is more than 400% greater than the number of authentic retail domains.More

The integration allows network operations to orchestrate the lifecycle of SSL/TLS certificates and ensure security policies are enforced across devices.More

Governments that flout encryption best practice and mandate the inclusion of backdoors into technology are putting their entire countries at risk, according to security professionals.More

Eliminating certificate-related outages within complex, multi-tiered architectures can feel like an impossible effort.More

Machine identity protection solution secures code signing across organisations and guards against unauthorised use.More

“This flaw can be weaponised in highly targeted attacks that would normally require system-wide privileges or a complete subversion of the operating system."More

Certificate-related outages harm the reliability and availability of vital network systems and services while also being difficult to diagnose and remediate. More

'This is not rocket science; backdoors inevitably create vulnerabilities that can be exploited by malicious actors."More

Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.More

These services deliver machine-identities-as-a-service to cybercriminals who wish to spoof websites, eavesdrop on encrypted traffic, perform man-in-the-middle attacks and steal sensitive data.More

Cryptographic keys serve as machine identities and are the foundation of enterprise information technology systems. More

Because they point to malicious online shopping sites that mimic legitimate, well-known retail websites, it makes it increasingly difficult for customers to detect the fake domains.More

The study focused on enterprise machine identity protection challenges and included responses from 350 senior IT security professionals.More