ManageEngine has cemented its stance in identity-first security with the launch of passwordless, phishing-resistant FIDO2 authentication for enterprise applications in ADSelfService Plus.
This is its on-premises identity security solution, and endpoint MFA for Windows machines and elevated system actions in Identity360, its cloud-native identity management platform.
Attackers are ever striving to breach authentication mechanisms by stealing and misusing identities, predominantly via phishing attacks. Egress’ 2024 Email Security Risk Report states that 79% of account takeover (ATO) attacks start with phishing.
Unlike other cyberthreats, phishing directly targets unsuspecting end users who often become victims of the attack. Deploying phishing-resistant authentication barricades such attacks, propelling organisations towards an enhanced Zero Trust security environment.
“As the digital infrastructure of enterprises is expanding due to widespread adoption of cloud services and remote work, network attack surfaces are also correspondingly increasing,” said Manikandan Thangaraj, Vice President, ManageEngine.
“Security teams, knowing that this exponentially growing security perimeter cannot be protected effectively anymore with legacy network-based security controls, are shifting their focus to identity-first security, positioning identity as the primary control plane for cybersecurity. With identity as the new security perimeter, the effort to safeguard the entire network is now translated into carefully authenticating every identity requesting entry into the network.”
