PEGRight Brings Ping Identity and Netskope Together to Mitigate the Threat of Compromised Email Addresses

Today, at Ping Identity’s IDENTIFY 2015 event in New York City, we’re excited to introduce a solution that increases security and prevents costly security breaches by mitigating the threat of compromised user accounts. PEGRight partnered with Ping Identity and Netskope to create an adaptive authentication solution that checks to see if a user account has been compromised before allowing access to critical resources.

“The number of passwords in our lives is increasing exponentially, both personal and corporate, causing us to adopt a very bad habit – reusing passwords across accounts,” said Eric Uythoven, PEGRight CTO. “It’s a user convenience, but a security nightmare given the increasing number of data breaches and compromised accounts.”

According to the Identity Theft Resource Center, data breaches in 2015 are on pace to set a record with 400 data incidents and 117,576,693 records confirmed to be at risk in the first 6 months of 2015. Enterprises are implementing SSO and federation solutions at a rapid rate to reduce the number of passwords in our corporate lives, but if that single account is breached it can be costly to remediate – on average $3.8 Million total and $154 per record according to the Ponemon Institute.

“As part of Netskope’s Cloud Access Security Broker solution, Netskope provides a service that notifies IT administrators if a corporate account has been compromised. With IT security staff in short supply, what’s needed are automated solutions and workflows that help IT take immediate action,” said Mario Puras, Vice President of Sales Engineering at Netskope. “We worked with PEGRight to automate the process and create a solution that integrates Netskope with PingFederate to prevent users who have been compromised from accessing critical resources.”

How it Works:

Before authenticating a user, PingFederate checks the Netskope user compromise status service to determine if the account has been compromised. If the account has been compromised, PingFederate can be configured to redirect the user through an exception flow depending on your organizations security policy. For example:

  • The user is asked for a second factor of authentication, such as PingID
  • The user is asked to change their password before proceeding
  • The user is denied access until the compromise has been further investigated

The Netskope portal will also notify the IT administrator that the user account is in compromised status.

Stop by our booth at IDENTIFY 2015 New York City on October 15th or San Francisco on October 21st to hear more about the solution and see a live demo. Check out these online resources, as well:

Contact us if you are interested in learning more.

Rate this blog entry:
3