Fending off Brute Force with Duo

Fending off Brute Force with Duo

Brute Force attacks are prevalent and indeed, with the current climate seem to be on the rise. Brute Force attacks are the trial and error of accessing systems. They are not just attacking from outside your network, but can also be inside your network. What can you do to reduce the risk? The solution is simple; Multi-Factor Authentication (MFA).

This will mean that users with relevant access will need multiple forms of identification to access systems and data. These can be via phone calls, text or more securely through an authentication application such as Duo Mobile. These are used in addition to the username and password combinations used to access systems, hence Multi-Factor. If a user’s password is compromised, it’s less likely that their phone, username, and password are all compromised at once, so a known password alone is of little use to someone attempting an attack.

According to Gartner who predict that in 2021 99% of Exploited Vulnerabilities will be issues known by an organisation for at least a year.

Do you know what your users are doing? How are they accessing company resources? Are they using secure devices?

Duo can help protect against the brute force attacks by identifying users as and when they make login/access requests, then checks their device before granting access.

You can protect trusted endpoints allowing users to access applications/data on personal machines but protecting the organisation by ensuring that the devices used are secure. Duo protects a wide range of applications natively but can also easily protect other applications using Active Directory Federation Services (ADFS) and other cloud-based LDPs like OneLogin, Centrify, Okta, Open LDAP, Google OIDC, Azure OIDC and SAML IDPs.

Try Cisco Duo for free by visiting - https://ik.link/cd-trial