security

A recent report from the Anti-Phishing Working Group (APWG) revealed phishing attacks for the first quarter of 2022 exceeded one million—the highest on APWG record. As attacks increase, it’s reasonable to expect targeted phishing attacks to increase as well.  The U.S. government is defending itself against this growing threat via mandates and…

What a difference four years makes.  Since launching our first State of Zero Trust report in 2019, we’ve been saying that the framework represents the future of security. This year, Zero Trust adoption reached a tipping point.  In 2019, many organizations that we surveyed acknowledged that Zero Trust was important, but just 16% had invested in…

Identity is foundational for a successful move to the cloud and a key element of modern security. As an independent and neutral identity provider, Okta believes that technology delivers more value and security when it’s built to integrate and interoperate with other tools and software providers—which is why we’re a founding member of the Open…

Since March of 2020, organizations worldwide have turned to technology to stay afloat during the interruptions caused by the COVID-19 pandemic. Companies rushed to support remote working, enabling new online experiences to stay connected to employees and to transact with customers.  Cutting-edge tech solutions, once considered only by “early…

Last year, global translation and localization company Welocalize added an extra layer of authentication to its client portal by teaming up with Okta. Now, Welocalize is delivering an easy-to-use portal experience that also meets its clients’ stringent information security (infosec) and data security needs. That extra layer is Okta Single Sign-On,…

The ultimate assurance for High Impact systems  FISMA demands the most rigorous security controls for systems and data categorized as High Impact under FIPS 199. That’s why FedRAMP’s High Impact Level authorization is the most rigorous for any cloud provider to achieve. It’s the ultimate assurance for federal agencies to confidently adopt modern,…

It’s been a long, long road….. Journeys are interesting things. You sometimes fail to realize you’re on a journey until the journey is over and you look back and say “Wow, I’ve come a long way”. Sometimes you know you’re on a journey but it’s hard to see where it might take you. The journey to a higher level of security (sometimes referred to as …

As we continue deeper into 2022, facing many of the challenges we saw in 2021 (see Reflections on Security: Looking Back at 2021), optimism may seem difficult. How do we know the next evolution of identity and security practices will be enough? And this time of year always sees a flurry of predictions on what trends will emerge and what should be…

As we exited a difficult 2020, we did so with lessons and learnings we were hoping would guide us better in 2021. There was a new focus towards a hybrid working environment that was also secure. This shift required a modernization of infrastructures, the adoption of new technologies, and innovative ways to automate, orchestrate, and reduce overall…

Organizations everywhere are expanding access to their applications and systems, making it easier for employees to work from any device or location. While this has been a boon for productivity, it also creates new targets for threat actors. This has resulted in a new urgency for IT and security leaders to prioritize and enhance login security…