5 Major SecureAuth Product And Leadership Updates

Securing The Future

SecureAuth made a major splash at its INTERSECTION 2018 event this week from both a technology and personnel standpoint, naming two new leaders to its C-suite and enhancing its flagship products to better find identity-based attacks and monitor privileged account access.

Some of the Irvine, Calif.-based identity security vendor's partner praised the move, with Optiv's Dawn-Marie Hutchinson saying that identifying critical assets and detecting threats against them earlier in the process allows for attacks to be thwarted more quickly.

"To the extent we can identify through the pen testing and the machine learning where those attacks are coming from and the likelihood of attacks against identity, the faster and more efficient we are in responding," said Hutchinson, executive director at Denver-based Optiv, No. 26 on the 2018 CRN Solution Provider 500.

From a new company moniker to improve penetration testing and adaptive access control offerings, here's a look at the biggest news to come out of INTERSECTION 2018.

5. New Name Marks Start Of New Era

The company has spent the past year going by SecureAuth + CoreSecurity since the two businesses merged in October 2017. But on Wednesday, the whole business unified under the SecureAuth brand and adopted a new logo and tagline.

"The new brand is the embodiment of SecureAuth + CoreSecurity taking the final step is becoming one company with one vision, one mission, and one culture," Mark Zembal, SecureAuth's CMO, said in a statement.

The company has also adopted the tagline 'Eliminating Identity Related Breaches' to place a stake in the ground that indicates that company's reason for being, Zembal said.

4. Company Adds Two New Execs To C-Suite

SecureAuth has bolstered its executive ranks with the addition of a new chief financial officer and chief operating and chief security officer.

Justin Dolly came to SecureAuth from Malwarebyes, where he spent 2.5 years as chief security officer and CIO. Prior to that, Dolly spent 1.5 years as the CISO of ServiceNow and was VMware's first-ever CISO for nearly two years, leading the virtualization giant's initiative to create an information security program.

Tom Moyes had previously been a chief financial officer at four high-growth technology companies, most recently spending time as CFO Advisor at K1 Investments, a leading enterprise software-focused private equity firm. Prior to that, Moyes spent eight years as CFO and COO at RevShare and AdMore, two brands in the Carlyle Group and HIG Capital portfolio.

3. Pen Testing Tool Now Protects Against More Identity-Based Attacks

Updates to SecureAuth's Core Impact penetration testing offering have simplified testing for certain identity-based attacks and expanded the options for automating time-consuming, repeatable tasks.

The company's new functionality for Golden and Silver Ticket Attacks can trick Active Directory into providing penetration testers with a Kerberos ticket that offers entry into a system, helping to identify extraordinarily insidious methods that maliciously gain access to systems, according to SecureAuth.

The latest version of Core Impact can also ingest vulnerabilities detected by the Burp Suite and identify and tests those vulnerabilities with known exploits, SecureAuth said, helping organizations find and remediate web application risks. Burp Suite is a graphical web app scanner and tester that is used by most enterprises to test web application security.

2. Attackers Can Be More Easily Profiled Through Identity Governance

Integrating identity governance capabilities into SecureAuth IdP provides customers with valuable information about particular users who attackers often prefer and pursue, the company said. Specifically, SecureAuth said users with privileged or sensitive access are favored by attackers because of the access they possess.

SecureAuth IdP can now identify users who pose the greatest value to attackers because of their privileged or sensitive access, and then conduct deeper threat analysis. Additionally, breach prevention can be improved by keeping a close eye on high-value access rights, according to the company.

Attackers that use their coveted access rights to infiltrate networks and create fictitious users often end up violating segregation of duties policies. In response, SecureAuth has added a layer of security to identity common segregation of duty violations, and improved breach prevention by keeping a close eye on high-value access rights.

1. Machine Learning Now Being Used To Better Find Attackers

Adding machine learning to the SecureAuth IdP adaptive access control offering will make it possible to analyze large data sets to find anomalies or inconsistencies in behavior that could signal the presence of an attacker, the company said.

Specifically, SecureAuth said the machine learning baselines normal behavior for all users and identifies patterns that could indicate a compromise, helping professionals make informed decision. By following anomalous behavior, the machine learning is able to decrease detection time and the volume of alerts provided.

SecureAuth IdP machine learning analyzes data to detect: anomalous time or day of the week login activity; new or rarely used IP addresses; new or rarely visited location; change in login success frequency; change in login failure frequency; and increase in application login activity. As a result, the company said it's able to delivers better protection against attackers, even those with valid credentials.