Lucky number 7

7th edition of the Identity Jedi Newsletter

Author

David Lee
October 19, 2022

Wednesday 10/19/22 - Identity Jedi Newsletter - Subscribe

Welcome Jedi to the lucky 7th edition of the Identity Jedi Newsletter. You should head to Vegas immediately! And remember.....

Alright some quick announcements to kick us off! A big congratulations to Jedi Chris Anderson for BLASTING through the referral rewards program in ONE DAY! ( Yes padawan you too can be like Chris, just click the button below. )

Your gifts are on the way sir, and a huge thank you for the support!

Our little newsletter is growing Jedi. We are up to a whopping 80+ subscribers! Which is huge considering it started with 0 less than a month ago..lol. I cannot thank you enough for all the support, and will keep thanking you until you all tell me to stop. But even then...I still might. :-)

Alright, let's get to the good stuff.

  • Let's talk authentication, Axiad announces Certificate-based authentication

  • Zero Trust + Quantum Cryptography = Huh?

  • That'll be 9 million dollars please. And we don't take Bitcoin

Let's talk Authentication

Axiad, a leading provider of enterprise-wide passwordless orchestration, recently announced support for certificate-based authentication (CBA), a phish-resistant form of multi-factor authentication for Microsoft Entra Users. Say what you want about the big M, but they still remain a significant player in the IAM space, mostly because they can package their services together and once you are entrenched it's hard to break free.

Axiad Announces Support for Microsoft Azure Active Directory Certificate-Based Authentication (CBA)

Axiad announces support for Microsoft’s CBA, helping Active Directory (AD) users move securely to the cloud with phishing-resistant MFA.

https://www.businesswire.com/news/home/20221012005791/en/Axiad-Announces-Support-for-Microsoft-Azure-Active-Directory-Certificate-Based-Authentication-CBA

Quantum what?

Castle Shield Holdings, LLC., a leader in Zero Trust and cybersecurity solutions, has just announced that its Aeolus VPN solution now supports additional post-quantum cryptography (PQC) algorithms selected by the National Institute of Standards and Technology (NIST). Fair warning...the article is VERY technical and unless you follow the space closely, it won't make much sense. HOWEVER, this is an area we all should be watching closely. Quantum computing changes the game as we know it, as we inch closer to it's practical use we should understand how it's being used.

You are being redirected...

https://castle-shield.com/castle-shield-holdings-llc-updates-the-post-quantum-cryptography-pqc-algorithms-for-its-data-in-motion-aeolus-vpn-solution/

Yesterday's price is NOT today's price.

IBM's Cost of a Data Breach report is out and surprise, surprise the cost of data breaches went up. Here are some interesting stats from the report as well as a link to the full thing:

  • 83% of organizations studied have had more than one data breach

  • 60% of organizations' breaches led to increases in prices passed on to customers

  • 19 % of breaches occurred because of a compromise at a business partner

  • 79% of critical infrastructure organizations didn't deploy a zero trust architecture

Ok the top two absolutely sicken me. THIS IS NOT ACCEPTABLE. We can't be this careless with our security and then charge our customers for our mistakes. Look I get it, security is hard, but that's not an excuse to pass the buck ( literally) and then charge your customer for it. We need to start making real change and real efforts in this industry. Rant over, here's the link to the report

IBM Data Breach Report

https://onthecorner-21210122.hubspotpagebuilder.com/ibm-data-breach-report

Good Reads

The Digital Identity System Is Broken: How You Can Fix It | Spiceworks

The digital world has a major problem regarding digital identity. Discover what this problem is, and the possible ways companies can fix it.

https://www.spiceworks.com/it-security/identity-access-management/guest-article/how-to-fix-broken-digital-identity-system/

Beyond Encryption: A Layered Approach to Cyberthreat Defense

Even with mainframe’s unrivaled data protection capabilities, there are ways to maximize its security measures. By taking a layered approach that combines critical software capabilities with proven best practices, you’ll stay ahead of the ever-changing threat landscape.

https://www.computerworld.com/article/3676635/beyond-encryption-a-layered-approach-to-cyberthreat-defense.html

Toyota reveals cyber attack leaked 300,000 customers info - InfotechLead

Toyota has revealed a cyber attack on its IT systems has resulted into leak of personal information of nearly 300,000 vehicle customers

https://infotechlead.com/security/toyota-reveals-cyber-attack-leaked-300000-customers-info-74984

Podcasts

Identity in Cybersecurity Podcast

9 episodes. Cybersecurity is more important to your company—and more at risk—than ever before. In this podcast, sponsored by Plurilock, host Ian L. Paterson talks to cybersecurity leaders about the past, present, and future of cybersecurity to find out how digital identity has shaped the industry. If you’re a corporate leader looking for insights and guidance, buckle up for strong opinions, honest tech talk, key historical insights, and apocryphal cybersecurity stories as Ian works to uncov…

https://www.podchaser.com/podcasts/identity-in-cybersecurity-podc-1089422

‎Secure Insights: Conversations on Apple Podcasts

‎Technology · 2022

https://podcasts.apple.com/us/podcast/secure-insights-conversations/id1537125162

‎Identity Masters on Apple Podcasts

‎Technology · 2021

https://podcasts.apple.com/cz/podcast/identity-masters/id1553847268

Last Word

Identity is hard. I get it. So is security. We don't get the budgets we want, it's hard to get the resources we want, and vendors sometimes sell us shitty products. But the numbers in the latest data breach report are disheartening. Honestly it feels like we've just given up. But not me. I can't. I"m not built that way. We live in amazing time, where technology is truly the stuff of movies. We have apps that can render images, write books, process millions and millions data points and make it human readable. If we can do those things, than we can protect our applications. Push forward, Jedi. We can do this.

Don't forget to share the love with your friends, let's get this baby up to 100!

Also if you've got some content you'd like to write and have on the newsletter, let me know! Happy to have some guest writers aboard.

Email is [email protected]. ( official Identity Jedi email coming soon, just not ready to have yet ANOTHER email address..lol)

Alright until next week Jedi.

Be Kind to each other, Be Good to each other, Love each other.

-Identity Jedi

Reply

or to participate.