Identity theft has become a major problem for organisations, as it has become the most common way for cybercriminals to gain initial access to networks. According to the 2023 Threat Hunting Report by CrowdStrike, around 80% of breaches now involve the use of compromised identities, with 62% involving the abuse of legitimate accounts and 34% involving domain or default accounts. While enterprise security solutions, such as endpoint detection and response (EDR), have made it more difficult for threat actors to accomplish their goals, cybercriminals are still finding ways to gain access. Instead, they have turned to three main categories of identity theft: social engineering, credential stealing via infostealers and unprotected devices, and credential collecting from compromised or leaked databases. The report warns that it is essential for organisations to take steps to protect themselves against these types of attacks, including implementing strong authentication measures and regularly monitoring their networks for any signs of suspicious activity.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 4,350 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.