Have you ever thought about how a computer, app, or machine proves who it is when it goes online or tries to connect to another system? These are what experts call “non-human identities” (NHIs) and they’re sort of like the digital ID cards for our technology. Now, Entro Security, a big name in cybersecurity, has taken a deep dive into the world of these NHIs and the secrets (like passwords and access keys) they use. And let me tell you, what they found is pretty mind-blowing!
Turns out, the digital world is a bit messy when it comes to keeping these NHIs in check. Think of it like this: if each of us represented one human identity, there would be 92 NHIs running around for each of us! That’s a lot of digital ID cards to manage, and, unfortunately, a lot of opportunities for something to go wrong.
Here are some startling stats Entro Security shared: a whopping 97% of these NHIs are wandering around with more access than they should have. It’s as if they have master keys to offices they don’t need to enter, making our digital space less safe. Entro also found that many companies accidentally leave the door open for outsiders to bump into these NHIs. Plus, about 44% of secret tokens, which are basically keys to secure areas, are being left out in the open – in emails, chat rooms, and notes – where just about anyone could find them.
So, what does this all mean? It shows that companies need to tidy up their digital spaces and better manage how their tech accesses other systems. Just like we shouldn’t write our passwords on sticky notes for others to see, companies shouldn’t be careless with their NHIs and secrets.
Behind the scenes, Entro Security has been gathering loads of data from real-world tech incidents, public reports, and advice from techies to understand this issue better. And the findings have been pretty clear: businesses could do a lot more to safeguard their digital doorways and keys.
Entro Security is shouting from the rooftops about this and they’re saying, “Hey, this is serious, and we need to fix it, like, yesterday.” They’ve even written a whole report to help businesses understand what’s going on so they can lock down their NHIs and secrets better.
Think of the internet as a big apartment complex. We want to make sure that every digital identity, or “tenant,” has the right key to their own “apartment” and can’t just wander into someone else’s by mistake. That’s where good “cybersecurity hygiene” comes in. Keeping our digital keys in order and making sure they stay in the right hands is super important for staying safe online.
If this sounds like something you’re encountering and you’re not sure how to handle it, don’t worry, you’re not alone. The Diversified Outlook Group understands these complex cybersecurity issues and can guide you through the maze. Drop us an email at support@diversifiedoutlookgroup.com and we’ll team up to strengthen your digital defenses.
To read more about Entro Security’s findings, check out the full report at www.csoonline.com/article/3524025/entro-security-labs-releases-non-human-identities-research-security-advisory.html. It’s a game-changer in understanding how to better manage and protect the identity of our machines and devices in the cyber world.