The Evolution Of Privileged Access Management

Irrespective of companies’ size and operation, protecting a high-level admin account is an important element of an effective security strategy against cyber-threats. In most data breach cases, the attacker has targeted admin-based credentials to extract data, make changes to configurations, or set-up ransomware. Moreover, PAM is also imperative to ensure that your organization gets maximum protection from insider threats.

If you are not monitoring who is accessing the different accounts, you do not know what is actually happening across the enterprise. Without effective privileged access management, your company is at greater risk of sensitive information being compromised. Additionally, if the passwords are not managed and changed regularly, even workers who have left the company may be able to access vital data.

What exactly is Privileged Access Management, and how it works? Read on to find out more about this vital phenomenon.

Read More

ARCON Password Vault

Passwords are your safety doors: Lock your assets or leak them

In the beginning of 2019, more than 773 million email IDs and 21 million passwords were hacked which is claimed to be the biggest hacks of this year (so far). Australian researcher Troy Hunt discovered this and mentioned it in his website “”. This incident threw a fresh question to us whether we are digitally safe. Previously, different stray breach incidents shook many large and small enterprises worldwide and forced them to take immediate initiatives for adequate security measures.

Read More

4 critical scenarios why Privileged Access Management will take center stage in 2019

Privileged Access Management (PAM) has become an integral part of overall cyber security framework for any modern-day organization. As privileged accounts provide access to confidential information, securing them from any untoward incident (abuse of privileged credentials or accounts) remains one of the major concerns for the Security and Risk management pros.

Read More

10 steps to better manage Privileged Access

Andrew Dalglish, director of Circle Research, a UK based research firm recently said “The very people working in businesses can pose as the biggest threat to its security.” That’s a pretty huge statement to make come to think of it. Why would he say that when organizations across the world are taking the necessary precautions and spending billions on IT security? Well the answer to that is simple; most organizations are still focused on thoroughly securing their perimeter. Based on a survey by SpectorSoft, a pioneer in user activity monitoring and behavior analysis, a staggering 62% organizations saw a rise in insider attacks over 2014-2015. This means, although a majority of the organizations are aware of privileged access security and have security solutions in place, they have seen a rise in insider threats. Research firm Gartner has solved this mystery stating “Less than 5% of the organizations were tracking and reviewing privileged activity in 2015. The remaining are at best controlling access and logging when, where and by whom privileged access has taken place but not WHAT actually is done.”

Read More

Password Management Compliances across the World

In one of my previous roles as a test analyst, I was primarily responsible for constructing test cases for password management. At the time, I had devised a whole array of possible test cases for password management which included specifications on the length of the password, complexity of the password, frequency for changing password and so on. However a thought struck me. This tedious manual procedure of password management by the administrator or super-user was done to ensure security but where is the security after all? How many permutations and combinations can a human come up with to ensure these passwords are managed and maintained to comply with regulatory standards? But today working in this cyber security space, I can confidently say that you just have to go knocking on the right door to eliminate this monotonous process and get automated password management solutions that is regulatory compliant and at the same time safe, effective and productive.

Read More