Your April Security Beat

[Cisco Logo] [Duo Security is now a part of Cisco]() [About Cisco]() [Duo Security Logo] Security Beat Apr 19, 2022 How to Make Multi-Factor Authentication Even More Secure While implementing MFA dramatically decreases the risk account compromise, there will always be bad actors looking to break through defenses. Here are 11 ways Duo can help strengthen your security beyond standard MFA. [Read the Duo Blog Post](/MDc0LVVRWC00MTAAAAGD4R1zj-X8JnHI98aJh_J200yMA0OlxT3k4BtFbXrcM_oP0MnM4BISSbupKk5imYitWWfjtH0=) Updating the Universal Prompt: Collaboration, Simplification and Democratizing Security Duo’s Universal Prompt democratizes security by making multi-factor authentication easier and more customizable. In conversation with Engineering Technical Lead Aaron McConnell, get an inside look at the process and culture that drove this innovation. [Read the Duo Blog Post](=/MDc0LVVRWC00MTAAAAGD4R1zj-X8JnHI98aJh_J200yMA0OlxT3k4BtFbXrcM_oP0MnM4BISSbupKk5imYitWWfjtH0=) Duo Women Senior Leaders Share Stories and Advice We recently hosted a panel discussion for Women’s History Month about the importance of challenging biases and misconceptions in pursuit of a more inclusive, gender-equitable world. We’re sharing some of our favorite quotes and lessons learned from the event. [Read the Duo Blog Post](=/MDc0LVVRWC00MTAAAAGD4R1zj-X8JnHI98aJh_J200yMA0OlxT3k4BtFbXrcM_oP0MnM4BISSbupKk5imYitWWfjtH0=) We Are Headed for an Ecosystem of Cyber Haves and Cyber Nots Advisory CISO Helen Patton talks with ZDnet about why a combination of resourcing, government initiatives, and innovation will mean some organizations are able to handle cyber threats in real time — and then there’s everyone else. [Read the Story](=/MDc0LVVRWC00MTAAAAGD4R1zj-X8JnHI98aJh_J200yMA0OlxT3k4BtFbXrcM_oP0MnM4BISSbupKk5imYitWWfjtH0=) Decipher Podcast: Caitlin Condon Vulnerability Research Manager at Rapid7 Caitlin Condon joins Lindsey O’Donnell-Welch to discuss the rise of “widespread threats,” how the time to exploitation by attackers has shifted, and what that means for security teams. [Listen to the Podcast](=/MDc0LVVRWC00MTAAAAGD4R1zj-X8JnHI98aJh_J200yMA0OlxT3k4BtFbXrcM_oP0MnM4BISSbupKk5imYitWWfjtH0=) Local Government Ransomware Attacks Disrupt Public Services Ransomware attacks on local governments over the past year have resulted in various public service disturbances, from disabling jail surveillance cameras to disrupting COVID-19 vaccination appointment scheduling. [Read the Story]() Around the Web What else is new in the security world? - [State Department’s New Bureau Makes Cybersecurity a Part of Foreign Policy]() - The Bureau of Cyberspace and Digital Policy will focus on national security and other issues. - [Attackers Compromise 94% of Critical Assets Within Four Steps of Initial Breach]() - New research analyzing the methods, attack paths, and impacts of cyberattacks in 2021 highlights the threats impacting critical assets across on-premises, multi-cloud,and hybrid environments. - [LAPSUS$: How a Sloppy Extortion Gang Became One of the Most Prolific Hacking Groups]() - The U.S. government has said it is paying close attention to LAPSUS$, the group that breached Okta, Microsoft, and Nvidia. The answers for the group’s motivations are hiding in plain sight. - [NFTs Are a Privacy and Security Nightmare]() - Imagine a financial system that’s not just public by default, but can't ever be made private, and nothing can ever be removed or deleted. That's it for this time. Remember to tweet us @duosec with your suggestions on what we should cover. Thanks for reading! [Duo on Twitter]() [Duo on Facebook]() [Duo on Instagram]() No longer want to receive these updates? [Unsubscribe here]( Duo's general privacy notice may be [found here]() 123 N Ashley St, Ann Arbor MI 48104