In response to several high-profile cyber attacks, businesses are beginning to understand that conventional authentication is not always enough. Now, the Dell SecureWorks Counter Threat Unit has detailed a new Skeleton Key malware which bypasses Active Directory authentication.
For businesses that use Active Directory, this poses a serious danger. The malware allows attackers to use remote access services. This activity is completely invisible to legitimate users. As a result, attackers could continue to use remote services for prolonged periods of time without detection.
Unfortunately, this reflects a more serious issue than a single piece of malware. An increase in cyber crime makes a single authentication method inadequate and, if your business only uses one method, it is a matter of time before it is exploited.
It is time to make the switch to two-factor authentication. Your business could depend on it.