Last Week As A vCISO

Share this post
Uber Hack: Get RID Of ALL Your Admin Static Creds
www.lastweekasavciso.com

Uber Hack: Get RID Of ALL Your Admin Static Creds

Lessons learned from last week's Uber hack

Ayman Elsawah
Sep 20
Share this post
Uber Hack: Get RID Of ALL Your Admin Static Creds
www.lastweekasavciso.com

That’s it, no post right now.

My tips this week are:

  • Get rid of all your static admin creds

  • Add step up authentication for all admin ACTIONS

  • Add adaptive MFA to your authentication to detect abnormal MFA activity

  • Have admin users use SEPARATE credentials for everyday access vs Admin Access

Tweet This!

Here’s an excellent video by Marcus to help illustrate:

Last Week As A vCISO is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

Share this post
Uber Hack: Get RID Of ALL Your Admin Static Creds
www.lastweekasavciso.com
Comments

Create your profile

0 subscriptions will be displayed on your profile (edit)

Skip for now

Only paid subscribers can comment on this post

Already a paid subscriber? Sign in

Check your email

For your security, we need to re-authenticate you.

Click the link we sent to , or click here to sign in.

TopNewCommunity

No posts

Ready for more?

© 2022 Ayman Elsawah
Privacy ∙ Terms ∙ Collection notice
Publish on Substack Get the app
Substack is the home for great writing