Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.


Privileged Account Management


The Current State of the Cyber Insurance Market and its Role in Managing Cyber Risk

Posted July 14, 2015    Tracie Grella

Cyber insurance is the fastest growing insurance product today, it’s development spurred on by several large data breaches covered in the news the past year and a half. As with any new product/service, there is a lot of variation and evolution in the coverage; here is what you need to know.

, , ,

Compromised Contractor Credential Leads to Largest Cyberattack into the Systems of the US Government

Posted July 13, 2015    Brad Hibbert

The damage from the US federal government’s Office of Personnel Management data breach is only getting worse. First disclosed last month and affecting 4.2 million US federal employees, the number of compromised records now has reached 21.5 million people, including those who received government background checks for the past 15 years.

, , ,

On Demand Webinar: Preserving and Protecting Privileged Passwords

Posted July 9, 2015    BeyondTrust Software

On demand webinar Webinar discusses the changing state of industry security, how current trends impact privileged accounts and their passwords, and what steps IT should be taking to ensure only those who should have access, do.

, , ,
Cavalancia-Headshot - Medium

Protecting Privileged Passwords: a “Past the Password” Perspective

Posted July 6, 2015    Nick Cavalancia

Webinar discussing the realities of today’s state of security using some of the most recent (and respected) reports in the industry, and look at what steps you should be taking to properly protect your privileged passwords.


On Demand Webinar: Because Auditing Stinks Sometimes

Posted July 2, 2015    Lindsay Marsh

Auditing stinks. Well, mostly stinks. In this on demand webinar, lead by Group Policy MVP Jeremy Moskowitz, you’ll learn the three key tenets to real Group Policy auditing. Tenet 1: Why do you care about Group Policy auditing? Tenet 2: How does Eventing help you know “Who did what?” Tenet 3: How does Reporting tell you…

, , , ,

Stopping the Skeleton Key Trojan

Posted June 29, 2015    Robert Auch

Earlier this year Dell’s SecureWorks published an analysis of a malware they named “Skeleton Key”. This malware bypasses authentication for Active Directory users who have single-factor (password only) authentication. The “Skeleton Key” attack as documented by the SecureWorks CTU relies on several critical parts.

, , , , ,

Privileged Account Management – Another AH-HA in Cyber Security

Posted June 25, 2015    Nigel Hedges

I strongly believe that the Top 4 mitigation strategies don’t just simply apply to Australian organizations, it should be a global realization, a worldwide “ah ha!” for those still not quite understanding the importance here. Here’s a refresher (or intro) on the Top 4 mitigation strategies. Read on…

, ,

PowerBroker Management Suite 4.0: New Web Console and Deeper Auditing, including for NetApp Filers

Posted June 22, 2015    Rod Simmons

BeyondTrust has released version 4.0 of PowerBroker Management Suite, our solution for centralized real-time change auditing for Active Directory, File Servers, Exchange, and SQL, and recovery of Active Directory objects or attributes. This new release features some exciting enhancements – especially a new web console, deeper GPO auditing, and the addition of NetApp auditing.

, , ,

On Demand Webinar: Secure Local Window Admins with LAPS

Posted June 19, 2015    BeyondTrust Software

Windows & IT Security Expert, Russell Smith shows you how to configure Microsoft’s free Local Administrator Password Solution (LAPS) tool to secure local administrator accounts. Organizations often use the same password for local administrator accounts across all devices, leaving them vulnerable to Pass-the-Hash (PtH) attacks, which can result in sensitive domain credentials being exposed. LAPS automates regular changes of local administrator passwords, and securely stores passwords in Active Directory (AD).

, , ,

Are you a Data Privacy Hypocrite?

Posted June 18, 2015    Morey Haber

As technology users, we choose to share what we share with the world. However, do you know that there is information being collected on some devices that you might not even know about? Unless you read all the terms of service, you likely don’t know.

, ,