A couple of our larger financial institutions have been facing some odd outages over the weekend and currently.
When looking at the homepage of DownDetector.com, there’s a scary correlation happening.
There seems to be a large scale cyber attack going on all over the place!
And one of the biggest issues we’re seeing actively is that people are manually checking out Privileged Accounts (admin / root / etc) to run around and try to fix everything and it’s a serious bottle neck. The next scare is keeping track of them all to ensure they’re checked back in, not compromised, and rotated where necessary. Doing this manually will be a MASSIVE headache and possible vector for some phishing / social engineering attacks during all this fiasco.
If you don’t have a PAM tool in place and some serious passwordless / MFA tools in place, take this as a shot over the bow to start figuring out how to get them in place ASAP!