- Technology
- Industry
- Solutions
-
- ASSET MANAGEMENT
- AUGMENTED & VIRTUAL REALITY
- COLLABORATION
- CONVERSATIONAL
- CUSTOMER EXPERIENCE MANAGEMENT
- CUSTOMER RELATIONSHIP MANAGEMENT
- CYBER SECURITY
- DATA CENTER
- DIGITAL CUSTOMER EXPERIENCE
- DOCUMENT MANAGEMENT
- EHS SOFTWARE
- ELECTRONIC DATA INTERCHANGE
- ENTERPRISE DATA MANAGEMENT
- ENTERPRISE DATA QUALITY MONITORING
- ENTERPRISE RESOURCE PLANNING
- ENTERPRISE RISK MANAGEMENT
- ENTERPRISE-GRADE WEB DATA SOLUTIONS
- FACILITY MANAGEMENT
- FIELD SERVICE
- GAMIFICATION
- IDENTITY AND ACCESS MANAGEMENT
- INFRASTRUCTURE
- IT SERVICE MANAGEMENT
- MANAGED IT SERVICES
- PAYMENT AND CARD
- PROJECT MANAGEMENT
- SOFTWARE TESTING
- STORAGE
- VIDEO SOLUTIONS
- WORKFLOW
-
- Platforms
- Functions
- Leadership Perspectives
- Innovation Insights
- Newsletter
- Conferences
- News
- CXO Awards
- About Us
Security : Keeper Security
Keeper Security
Darren Guccione, CEO and Co-Founder and Craig Lurey, CTO and Co-Founder
Comprehensive, Zero-Trust, Enterprise-Grade Password Security and Management
Darren Guccione, CEO and Co-Founder and Craig Lurey, CTO and Co-FounderWhat’s causing this explosion in cyberattacks? Many experts point at the rapid digital transformations that companies were forced to embark on due to the COVID-19 pandemic. It’s true that during the mad rush to enable and secure armies of distributed workers, cybersecurity frequently took a back seat to business continuity. However, “remote work,” in and of itself, isn’t the root cause of the rise in security incidents; weak or stolen passwords are. Over 80% of successful data breaches, and about 75% of ransomware attacks, involve compromised user credentials.
With a set of working user credentials in hand, cybercriminals can bypass firewalls, anti-virus software, and other technical safeguards to enter organizational systems undetected. They then move laterally within the system to escalate their privileges, exfiltrate data, delete or alter files, and plant malware. They’ve got plenty of time to poke around, too. When cybercriminals use stolen credentials to breach a network, they remain undetected for an average of 250 days.
While there is no magic solution that will provide 100% protection against any and all cyberattacks, the simple act of securing a company’s passwords can prevent the overwhelming majority of data breaches and ransomware attacks. This is great news for large multinational enterprises and small startups alike. If your organization has no idea how to get started with cybersecurity, deploying an enterprise-grade password management and security solution is an easy and inexpensive way to secure your systems against the most common attack vector.
Keeper Security’s top-rated, enterprise-grade cybersecurity platform protects organizations of all sizes, in every industry sector, with zero-trust and zero-knowledge password security and encryption, along with Dark Web monitoring, digital file storage and secure messaging.
Cybersecurity Starts with Keeper
Rapidly deployable in any data environment, with no additional software or equipment required, Keeper is far more than just a password manager; it’s a comprehensive, enterprise-grade cybersecurity platform that protects all endpoints and infrastructure with a zero-trust and zero-knowledge security architecture.
“Keeper is the most effective defense against ransomware attacks and other password-related data breaches,” explains Darren Guccione, Keeper’s CEO and Co-Founder. “It provides mission-critical visibility and control over password security across the entire organization, including dark web visibility for threat migration.
Keeper also integrates and provisions quickly with any infrastructure and identity platform across cloud, on-prem and hybrid environments.”
Keeper automatically generates strong, random, unique passwords for all user apps and accounts, then automatically fills them into web and mobile login forms. Because Keeper uses a zero-knowledge security architecture, all data is encrypted and decrypted locally, at the device level. Keeper does not hold or manage users’ encryption keys and has no way of accessing users’ master passwords or any of the data stored in their Keeper vaults.
Keeper gives your organization everything it needs for its employees to create and store high-strength, random passwords for all of their apps and online accounts. Everything is stored in a secure, digital vault that acts like a virtual safety deposit box
With Keeper, Admins can easily see if users are engaging in poor password security habits, such as using weak passwords or reusing access credentials across multiple accounts, and take corrective action. Admins can also use role-based access controls (RBAC) to enforce least privilege policies. Administration may be delegated according to department or by team leader, and folders and records can be securely shared and revoked. If an administrator or employee leaves the company, their vault can be automatically locked for secure transfer to another user at a later date.
In addition to securing company passwords, organizations can use Keeper to prevent theft of digital intellectual property and other sensitive data with Secure File Storage. This add-on enables users to store sensitive files, documents, digital certificates, private keys, images, and videos in their Keeper vaults and securely share them with colleagues. Keeper’s zero-knowledge security architecture ensures that only the user can access and decrypt their stored files, and file-sharing is performed using PKI to ensure that only the recipient of a shared file can decrypt it.
Keeper is designed to be extremely easy to deploy and use, but if admins need help, Keeper’s dedicated support specialists are available 24x7 for customer support and training.
The platform’s capabilities can be easily extended with advanced add-ons for SSO integration, Dark Web monitoring, and more. “We have several patented applications, the first of which is called Keeper SSO Connect™, which is a SAML 2.0 service that quickly and seamlessly integrates with a customer's existing SSO identity provider. This enhances and expands SSO deployment and capabilities with zero-knowledge password management and client-side, end-to-end encryption," says Guccione. Keeper SSO Connect fills SSO security gaps and enables organizations to significantly minimize their risk of password-related cyberattacks.
Another valuable add-on is Keeper’s ARAM (Advanced Reporting and Alerts) module, which enables IT and security admins to monitor their user population and receive real-time email, SMS text, or webhooks notifications of user activity that could indicate security policy or compliance violations, such as a user disabling 2FA or setting a weak password.
“ARAM has hundreds of different parameters that admins can set and receive notifications for. They can even track those notifications and receive real-time alerts. It's all about visibility, access and control over the entire infrastructure.” explains Guccione.
BreachWatch for Business, Keeper’s Dark Web monitoring solution, protects organizations against third-party vendor breaches by monitoring Dark Web forums and notifying admins if any employee passwords have been compromised. This allows administrators to force password resets immediately, minimizing the risk of cybercriminals using them to breach the organization's network.
Keeper’s highly competitive pricing structure balances affordability with security and ease of use, which has enabled the platform to attract a broad clientele and user base. Millions of consumers and thousands of organizations worldwide trust Keeper to secure their passwords and digital information.
From Simple Beginnings to Strategic Expansion
Keeper’s origins date back to 2009, when Keeper entered the market as a consumer product—one of the earliest password manager apps in the App Store.
“My business partner and co-founder, Craig Lurey, began building it during a flight to Asia in late 2008,” Guccione recalls. “Apple had recently launched their first mobile-app SDK. He had created a container-like app for users to store codes, lists and data. This was the spark that led to Keeper’s proliferation.”
"For all its features and security capabilities, Keeper is a highly cost-effective cybersecurity solution, one of the least expensive items in any organization’s security stack"
Within six months, Keeper had been downloaded 500,000 times. The rest, as they say, is history. Guccione and Lurey launched the paid version of the application in September 2010, and they’ve been enhancing and building upon it ever since. Today, Keeper boasts millions of users, and the product is sold in over 120 countries, in 21 different languages.
“Over the past four years, Keeper’s biggest growth segment has been the B2B market, which is exhibiting triple-digit growth,” Guccione says. “We’re protecting SOHOs (Small Office Home Office), small and medium-sized businesses, mid-market enterprises, and large organizations, along with schools and the public sector. The B2B and B2G markets are an extremely important customer base. Both private businesses and public-sector organizations need help because today’s cybercriminals are heavily funded, highly skilled and organized and technically advanced - they’re attacking organizations every second of every day.”
Keeper is rapidly expanding into the public sector market, which cybercriminals are heavily targeting. “State and municipal agencies are getting hit especially hard by ransomware attacks, and Keeper is here to help them,” Guccione explains. “We know they tend to have much tighter budgets than federal agencies, but that’s okay. For all its features and security capabilities, Keeper is a highly cost-effective cybersecurity solution that is budget-focused for the customer. It’s important to make the product accessible to organizations so they can protect against ransomware attacks and other common attack vectors.”
Keeper Security Issues Top 5 Cybersecurity Tips for the 2023 Tax Season
Monday, February 27, 2023
CHICAGO - With the 2023 tax season upon us, individuals and businesses are reminded to stay vigilant to protect their personal and financial information from cyberthreats. Tax season is an opportune time for cybercriminals to send out phishing scams, steal sensitive information, and exploit weaknesses in personal and organizational networks. To help taxpayers avoid becoming victims of cybercrime, Keeper Security is providing the following cybersecurity tips.
#1 Be on the lookout for phishing and phone scams. Cybercriminals have been known to pose as the IRS, tax preparation companies and other tax-related organizations in an attempt to steal your personal information. These attempts can include phone calls, text messages, emails and other forms of communication. To avoid becoming a victim of a phishing attack, do not open attachments or click on links from unknown sources, verify that it's a trusted source requesting the information and check any links to make sure they're not leading you to a malicious site. The IRS will not send unsolicited emails, phone calls or text messages asking for personal information, financial information or payment.
#2 Create strong, unique passwords for all of your accounts. This is especially important for your financial accounts. Passwords should be at least 12 characters with a mix of uppercase and lowercase letters, a variety of symbols and a random assortment of numbers. Also, consider a passphrase rather than a single word. Avoid using easily guessable information such as familiar names, birthdates and addresses. Finally, make sure you have different, high-strength passwords for all of your accounts. This way, if one account is breached, a cybercriminal does not gain access to all your accounts. A password manager can generate and securely store strong passwords, which can be especially useful for accounts that are infrequently used. Consider using multi-factor authentication for your accounts as a second layer of security.
#3 Securely store and share sensitive documents. Tax preparers will require sensitive documents with personally identifiable information (PII) which could include your SSN, Form W-2, an Identity Protection PIN or banking information. While physical copies of tax documents can be locked in a file cabinet or safe, digital copies should be stored on a secure external hard drive or in a secure cloud storage system. Sending these documents through email or text messaging can expose sensitive information. Instead, utilize an encrypted service such as One-Time Share to send tax documents and financial information. Your tax preparer may also use a secure file transfer service. Ensure that you're only sharing this sensitive information with those who need it, such as your tax preparer, financial advisor or lawyer.
#4 Make sure your software is up-to-date. Regularly update your operating system, web browser, security software and other applications to ensure they have the latest security patches and features. Software updates not only patch security flaws that cybercriminals can take advantage of, but also add new features and improve existing ones. It is especially important to check your tax software if you have not touched it since the last time you filed your taxes.
#5 Use a secure WiFi connection when filing taxes or sending tax information online. Public WiFi is a key battleground for cybercriminals. Thus, without proper protections, you may be vulnerable to both a cyberattack and eavesdropping. Open Public WiFi, absent adequate encryption software, should not be used to send any personal or financial information. The use of public computers should be avoided for the same reason. Use a trusted network with a strong WiFi password, a VPN and ensure your home router's software is up to date.
When filing income tax returns, it's crucial to take proactive measures to prevent your personal and financial information from being compromised. By following these simple tips, individuals and organizations will be far less likely to fall victim to cybercrime this tax season. Becoming a victim of identity theft can not only have immediate impacts, but can also create additional steps when filing taxes in future seasons. It's also advised to file early to avoid phishing scams that come up closer to the deadline and to address any issues that may arise ahead of time.
The IRS can issue Information Protection PINs as a proactive step to protect yourself from tax-related identity theft. The IRS has multiple resources available for taxpayers to have their questions answered, learn more about the tax filing process and receive help if your information or identity has been stolen.
Keeper Security Named Winner of Several Coveted Global InfoSec Awards at RSA 2023
Thursday, April 27, 2023
SAN FRANCISCO - Keeper Security,
announced that the company has been recognized by Cyber Defense Magazine, the industry's leading electronic information security magazine, as a winner in the following three categories for the 11th Annual Global Infosec Awards at RSA Conference 2023:
This accomplishment across a variety of categories further illustrates Keeper's position as an industry leader and innovator, as the company transforms the way organizations of all sizes secure their passwords, secrets and confidential information, and protect their digital assets to help mitigate the risk of password-related data breaches and cyberthreats. Keeper's easy-to-use cybersecurity platform is built on a foundation of zero-trust and zero-knowledge security to protect every user on every device, while meeting the most stringent government security and compliance requirements.
"This recognition across multiple categories is a tremendous achievement for our team at Keeper," said Darren Guccione, CEO and Co-founder of Keeper Security. "We're thrilled to share such an accomplishment, which only further highlights Keeper's commitment to provide best-in-class cybersecurity solutions for unmatched visibility, security and control over an organization's most important assets."
"Keeper Security embodies three major features we judges look for to become winners," said Gary S. Miliefsky, Publisher of Cyber Defense Magazine, "Understanding tomorrow's threats, today; providing a cost-effective solution; and innovating in unexpected ways that can help mitigate cyber risk to get one step ahead of the next breach."
This news comes on the heels of Keeper Security's recent launch of a sleek new user interface with a more friendlier and intuitive experience, offering enhanced clarity and searchability for users to enjoy.
Keeper Security Provides Cybersecurity Warning for Retailers This Holiday Shopping Season
Thursday, November 23, 2023
CHICAGO, -- It's a lucrative time of year, and not just for retail businesses. Cyber criminals also look to take advantage of the increased traffic and high sales volume, which provides cover for them to actively target retailers with cyber attacks. Keeper Security, the leading provider of zero-trust and zero-knowledge cybersecurity software protecting passwords, passkeys, privileged access, secrets and remote connections, is sharing cybersecurity best practices for small businesses to help protect sensitive systems and valuable customer data during the biggest shopping week of the year.
Cyber criminals utilize a range of tactics to gain access to an organization's systems and valuable data during this hectic time, which can include phishing attacks, ransomware, malware, business email compromise and more. Preparing for and actively defending against cyber threats is essential to maintain the security of customer data and transactions during the holiday shopping season and year-round. Retailers should implement a multi-layered approach to cybersecurity, including the following:
• Conduct employee training- According to Verizon's Data Breach Report, 74% of security breaches involve the human element, including falling victim to social engineering, stolen credentials or simply making an error—misplacing passwords, for instance. Cybersecurity training should be an integral part of onboarding, while phishing tests and supplemental training should be conducted regularly so employees can stay up-to-date on the latest threats.
• Regularly update software- Ensure all systems and software, including Point of Sale (POS) terminals and e-commerce platforms, are up to date with security patches to protect against known vulnerabilities. Install antivirus software and ensure it is regularly updated to defend against the newest threats.
• Secure sensitive systems- To secure payment processing, ensure you're using trusted tools and isolate your payment systems. Implement privileged access management to secure and manage access to privileged systems and accounts, such as payroll and IT. Implement the principle of least privilege to ensure employees only have access to the systems and accounts they need to do their jobs. Set up an intrusion detection and prevention system to monitor for suspicious activity and potential threats.
• Protect customer data- Regularly back up and control access to data by appointing administrators and monitoring user permissions. Review your existing data collection practices and policies to ensure you understand the user information your organization is collecting and get rid of any dark data your organization is not using. If your company doesn't absolutely need a piece of information about a customer, don't collect it.
• Implement an enterprise password manager- Weak and compromised passwords are the biggest threat to a retailer's cybersecurity. In addition to giving IT admins visibility into employee password practices and enabling them to enforce password security policies, such as the use of strong, unique passwords and MFA, an enterprise password manager helps prevent employees from entering their credentials on phishing sites.
• Secure your WiFi network- Protect your network with a strong password that is at least 16 characters, featuring a randomized mix of letters, numbers and special characters. If encryption is not already enabled, you can update it in your ISP admin settings. The majority of routers already have built-in firewalls, so ensure that's enabled as well. Use a Virtual Private Network (VPN) to allow remote workers to connect securely from outside the office.
By taking these steps, retailers and small businesses can bolster their cybersecurity posture and better protect their systems and data during the high-stress period of Black Friday and Cyber Monday.
Company
Keeper Security
Management
Darren Guccione, CEO and Co-Founder and Craig Lurey, CTO and Co-Founder
Description
Protecting businesses across every major industry sector, Keeper is a top-rated provider of zero-knowledge, enterprise-grade security and encryption software covering password management, dark web monitoring, digital file storage, and secure messaging. BreachWatch for Business, Keeper’s Dark Web monitoring solution, protects organizations against third-party vendor breaches by monitoring Dark Web forums and notifying admins if any employee passwords have been compromised. This allows administrators to force password resets immediately, minimizing the risk of cybercriminals using them to breach the organization's network. Keeper’s highly competitive pricing structure balances affordability with security and ease of use, which has enabled the platform to attract a broad clientele and user base. Millions of consumers and thousands of organizations worldwide trust Keeper to secure their passwords and digital information
Company
Keeper Security
Management
Darren Guccione, CEO and Co-Founder and Craig Lurey, CTO and Co-Founder
Description
Protecting businesses across every major industry sector, Keeper is a top-rated provider of zero-knowledge, enterprise-grade security and encryption software covering password management, dark web monitoring, digital file storage, and secure messaging. BreachWatch for Business, Keeper’s Dark Web monitoring solution, protects organizations against third-party vendor breaches by monitoring Dark Web forums and notifying admins if any employee passwords have been compromised. This allows administrators to force password resets immediately, minimizing the risk of cybercriminals using them to breach the organization's network. Keeper’s highly competitive pricing structure balances affordability with security and ease of use, which has enabled the platform to attract a broad clientele and user base. Millions of consumers and thousands of organizations worldwide trust Keeper to secure their passwords and digital information
