Category: News and Insights

Digitize & Securely Store All of Your Information with Keeper Record Types

Digitize & Securely Store All of Your Information with Keeper Record Types

With over 80% of successful data breaches being due to compromised login credentials, password managers are an essential tool for consumers. However, while cybersecurity starts with password security, it doesn’t end there. As ever-greater portions of our lives shift online, more of our data is being digitized. All of it […]

Keeper Security’s Commitment to Accessibility

Keeper Security’s Commitment to Accessibility

Why Is Accessibility Important? According to the World Health Organization (WHO), about 15% of the world’s population has a disability. The U.S. Census Bureau estimates that 18.7% of the U.S. population has a disability with almost 30 million people having motor or vision difficulties that impact their ability to access […]

Protect Your Master Passwords from Credential Stuffing

Protect Your Master Passwords from Credential Stuffing

Between the year-end holidays and breach fatigue, it’s easy for consumers and organizations to fall into a sense of complacency around cybersecurity. Cybercriminals know this, so while many people are vacationing, they’re hard at work. Case in point: Numerous users of the LastPass password manager have been receiving disturbing emails […]

Public Notice Regarding CVE-2021-44228: The Apache Foundation Log4j Vulnerability

Public Notice Regarding CVE-2021-44228: The Apache Foundation Log4j Vulnerability

On Dec 10, 2021, Keeper’s security team researched a publicly-reported vulnerability regarding an open-source Java logging library developed by the Apache Foundation called Log4j (vulnerability number CVE-2021-44228). Within 24 hours following the public disclosure of CVE-2021-44228, Keeper’s security and DevOps teams published updates to its infrastructure and enterprise software applications […]

Google Finds That Half of Compromised Cloud Instances Have Weak or No Passwords

Google Finds That Half of Compromised Cloud Instances Have Weak or No Passwords

Cloud computing isn’t inherently less secure than on-prem infrastructure — if organizations configure their cloud instances properly. Unfortunately, in many cases, they do not. Cloud misconfigurations account for 65% to 70% of cloud security issues. What does “cloud misconfiguration” mean? It’s a rather broad term that covers many possible errors, […]

GoDaddy Breach Happens in an Environment of Severe “Breach Fatigue”

GoDaddy Breach Happens in an Environment of Severe “Breach Fatigue”

The holiday season may be in full swing, but cybercriminals don’t take holidays. In fact, during major holidays, they frequently take advantage of thinner staffing levels and distracted employees to up their ante. We can expect the breaches, ransomware, and other cyber hits to keep coming, and possibly even increase […]

Robinhood Breach Compromises 7 Million Users: What to Do If You’re a Customer

Robinhood Breach Compromises 7 Million Users: What to Do If You’re a Customer

Trading platform Robinhood has suffered a breach compromising the personal information of about 7 million customers. In an official blog post, Robinhood said that the incident took place on November 3, when a cybercriminal “socially engineered a customer support representative by phone” to gain access to the company’s customer support […]

Password Security Can Help Government Agencies Comply with Federal Zero-Trust Mandates

Password Security Can Help Government Agencies Comply with Federal Zero-Trust Mandates

The White House Executive Order on cybersecurity and the push for all federal agencies to adopt a zero-trust security framework will fundamentally reshape public sector information security strategies. The work ahead will be a continuing journey, from migrating legacy systems to cloud environments, to mandating multi-factor authentication (2FA), to improving […]

Microsoft’s Allegedly “Passwordless” Login Isn’t All It’s Hyped Up to Be

Microsoft’s Allegedly “Passwordless” Login Isn’t All It’s Hyped Up to Be

Microsoft made a bold statement last week when it suddenly announced that their users can now ditch their passwords and log in using Microsoft Authenticator, Windows Hello, a physical security key like a Yubikey, or an SMS/email verification code. Microsoft rolled out passwordless login for its business and education customers […]

Password Security Takes Center Stage During Cybersecurity Awareness Month 2021

Password Security Takes Center Stage During Cybersecurity Awareness Month 2021

It’s that time of the year again. Cybersecurity Awareness Month, which occurs every October, is an important annual event where government and industry leaders work together to increase awareness of cybersecurity best practices. This time last year, organizations and consumers were scrambling to adjust to the new everything-from-home realities ushered […]