Jason Crabtree, QOMPLX CEO and co-founder, was featured in IT World Canada’s article, “More 2021 cybersecurity predictions: ‘Every service without MFA will suffer a breach.’”
Dozens of industry leaders provided predictions on the cybersecurity world in 2021. The challenges raised by COVID-19, the evolution of ransomware, and quantum computing were all areas of concern.
Crabtree addressed the role of authentication forgery in 2021: “In 2021 attackers will continue to use Kerberos- and SAML-based authentication forgeries, as demonstrated in SolarWinds Orion Sunburst breach, to move laterally and persist surreptitiously inside target networks. IT leaders will need to further emphasize disabling the fundamentally secure NTLM protocol and focus on stateful validation of Kerberos and SAML to reduce risk of more forged authentication events that give attackers the keys to the kingdom,” said Crabtree.