Get the report: How to Achieve CIO-CEO Alignment in the Era of AI

close
magnifying glass
Get Started
magnifying glass
chevron
Support Language
close
Your Network of Tomorrow
Your Network of Tomorrow
Plan your path toward a faster, more secure, and more resilient network designed for the applications and users that you support.
chevron Get the white paper
Experience Netskope
Get Hands-on With the Netskope Platform
Here's your chance to experience the Netskope One single-cloud platform first-hand. Sign up for self-paced, hands-on labs, join us for monthly live product demos, take a free test drive of Netskope Private Access, or join us for a live, instructor-led workshops.
chevron Experience Netskope
A Leader in SSE. Now a Leader in Single-Vendor SASE.
Netskope is recognized as a Leader Furthest in Vision for both SSE and SASE Platforms
2X a Leader in the Gartner® Magic Quadrant for SASE Platforms
One unified platform built for your journey
chevron Get the report
Securing Generative AI for Dummies
Securing Generative AI for Dummies
Learn how your organization can balance the innovative potential of generative AI with robust data security practices.
chevron Get the eBook
Modern data loss prevention (DLP) for Dummies eBook
Modern Data Loss Prevention (DLP) for Dummies
Get tips and tricks for transitioning to a cloud-delivered DLP.
chevron Get the eBook
Modern SD-WAN for SASE Dummies Book
Modern SD-WAN for SASE Dummies
Stop playing catch up with your networking architecture
chevron Get the eBook
Understanding where the risk lies
Advanced Analytics transforms the way security operations teams apply data-driven insights to implement better policies. With Advanced Analytics, you can identify trends, zero in on areas of concern and use the data to take action.
chevron Watch the demo
The 6 Most Compelling Use Cases for Complete Legacy VPN Replacement
The 6 Most Compelling Use Cases for Complete Legacy VPN Replacement
Netskope One Private Access is the only solution that allows you to retire your VPN for good.
chevron Get the eBook
Colgate-Palmolive Safeguards its "Intellectual Property” with Smart and Adaptable Data Protection
Colgate-Palmolive Safeguards its "Intellectual Property” with Smart and Adaptable Data Protection
chevron Read the case study
Netskope GovCloud
Netskope achieves FedRAMP High Authorization
Choose Netskope GovCloud to accelerate your agency’s transformation.
chevron Learn about Netskope GovCloud
Netskope Technical Support
Netskope Technical Support
Our qualified support engineers are located worldwide and have diverse backgrounds in cloud security, networking, virtualization, content delivery, and software development, ensuring timely and quality technical assistance
chevron Technical Support
Netskope video
Netskope Training
Netskope training will help you become a cloud security expert. We are here to help you secure your digital transformation journey and make the most of your cloud, web, and private applications.
chevron Explore Netskope Training
""
Achieve Business Value with Netskope One SSE
Netskope One Security Service Edge (SSE) enables enterprises to achieve considerable business value by consolidating business critical security services within the Netskope One platform
chevron Get the study
Let's do great things together
""
Netskope’s partner-centric go-to-market strategy enables our partners to maximize their growth and profitability while transforming enterprise security.
chevron Netskope Partners

Netskope Cloud Report: A Look at Compromised Credentials

Jan 08 2015
By Ravi Ithal
Tags
Box Security
Data Loss Prevention Software
Dropbox Security
Netskope Cloud Report
Security Audit

We released the Netskope Cloud Report for January today. In it, we report the latest numbers for cloud app adoption, with an average of 613 cloud apps per enterprise, as well as a host of other goodies, like top-used apps, activities that constitute a policy violation, and percentage of content-at-rest in sanctioned cloud storage that violates organizations’ data loss prevention profiles like PII and PCI.

Every quarter we drill a little deeper beyond our standard statistics into an area of cloud security, from activities like sharing to mobile cloud usage. This quarter, we highlighted some research that we are conducting around compromised account credentials. We have noticed that a growing number of enterprise cloud users are logging into their cloud apps using login names and passwords that have been stolen as part of a data hack or exposure. Based on our research, we estimate that 15 percent of users have had their account credentials compromised.

One fact that exacerbates this situation is that many people reuse their passwords for multiple accounts. Research suggests that as many as half of all users, and often more, do this. Combine that with the fact that a high number of your enterprise users log into your popular cloud-based apps like Salesforce, Box, Dropbox, Concur, and WebEx. Even if you’re diligent about protecting those apps, the chances are high that one of those users is logging into your business-critical apps with compromised credentials, even if the compromise had nothing to do with those apps or your protection of them.

How can you protect your business-critical apps given this situation? We recommend five things:

  • Discover all of your business-critical cloud apps. As you move to secure all of the cloud apps that you deem important or house sensitive data, reach beyond apps you know. IT typically underestimates cloud usage by about 90 percent. Of course, not all apps in use are going to be business-critical. But some are. Before applying security controls, make sure you identify which apps need protection.
  • Secure access to your business-critical apps with multi-factor authentication. Ensure that users accessing your apps are really who they claim to be, and be able to prove it after the fact.
  • Consider using single sign-on for your business-critical apps. SSO will enable you to easily manage access to your most important apps and will take password guesswork out of your users’ hands, all while making their lives easier.
  • Monitor granular user and admin activities. Ensure that you can go back after suspicious activity and easily construct an audit trail on who did what in your business-critical cloud apps. This means who downloaded client records from Salesforce, who shared sensitive content from your sanctioned cloud storage app, and so on.
  • Keep an eye out for anomalies. Excessive downloads or shares or out-of-the-ordinary access patterns may signal compromised credentials. Make sure you are watching for anomalies across all of your cloud apps, especially your business-critical ones, and that you instrument in alerts so you can take immediate action.

It’s nearly impossible to protect your users from having their credentials compromised. But there are some very clear steps you can take to protect your most business-critical apps and the data they house. Learn more about this topic and other cloud usage statistics in the Netskope Cloud Report.

< Platform, Products, & Services
Next Story >
< Back
Next >
author image
Ravi Ithal
Read More
More Articles by Ravi Ithal
Read full Bio
More articles

Related Articles

card shape
Platform, Products, & Services

Netskope & FIS: Managed SASE for Financial Institutions

By Parag Thakore
chevron Read the blog
card shape
Platform, Products, & Services

Strengthening Cloud Security with Netskope and Microsoft

By Ankur Chadda
chevron Read the blog
card shape
Platform, Products, & Services

Extend Security for Microsoft 365 Copilot with Netskope One

By Krishna Vasudevan
chevron Read the blog
Show More
Connect with Netskope

Subscribe to the Netskope Blog

Sign up to receive a roundup of the latest Netskope content delivered directly in your inbox every month.
Subscribe now