Last Week As A vCISO

Share this post

Uber Hack: Get RID Of ALL Your Admin Static Creds

www.lastweekasavciso.com

Uber Hack: Get RID Of ALL Your Admin Static Creds

Lessons learned from last week's Uber hack

Ayman Elsawah
Sep 20, 2022
Share this post

Uber Hack: Get RID Of ALL Your Admin Static Creds

www.lastweekasavciso.com

That’s it, no post right now.

My tips this week are:

  • Get rid of all your static admin creds

  • Add step up authentication for all admin ACTIONS

  • Add adaptive MFA to your authentication to detect abnormal MFA activity

  • Have admin users use SEPARATE credentials for everyday access vs Admin Access

Tweet This!

Here’s an excellent video by Marcus to help illustrate:

Last Week As A vCISO is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

Share this post

Uber Hack: Get RID Of ALL Your Admin Static Creds

www.lastweekasavciso.com
Comments
TopNewCommunity

No posts

Ready for more?

© 2023 Ayman Elsawah
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great writing