SecurityBrief Asia logo
Asia's leading source of cybersecurity and cyber-attack news
Partner content
Story image

Opening of new data centre heralds ambitious APAC expansion plans for Keeper Security

Ransomware attacks increased precipitously in 2021, with the first half of the year seeing nearly double the number of ransomware attacks globally as the same period in 2020. APAC organisations were victimised by an average of 1,338 cyber attacks each week -- the highest in the world. Meanwhile, the Europe, Middle East, and Africa (EMEA) region saw 777 attacks per week, while the Americas trailed at 688.

Even more concerning is the type of organisations being attacked, particularly in Australia. Over the past year, 25% of cyberattacks reported to Australian officials targeted critical infrastructure and essential services, including healthcare, food distribution, and energy. In addition to threatening Australians' health and safety, these cyberattacks caused Australian organisations and individuals to lose over $33 billion.

What's behind this dramatic rise in ransomware attacks? The rapid digital transformations that companies were forced to embark on due to COVID-19 played a large role. Whilst organisational IT personnel scrambled to enable and secure armies of remote workers, cybersecurity frequently took a back seat to business continuity. However, the sudden shift to distributed work doesn't shoulder all of the blame. Remote work per se doesn't cause cyberattacks. In most cases, they're caused by weak or stolen passwords. Over 80% of successful data breaches, and about 75% of ransomware attacks, involve compromised user credentials.

With a set of working user credentials in hand, cybercriminals can bypass technical safeguards, such as firewalls, anti-virus software, and IDS/IPS systems, to breach organisational networks undetected. Once inside, they're free to move laterally within the network and can exfiltrate data, delete or alter files, and plant malware. They generally don't need to hurry since it takes an average of 250 days for organisations to detect a breach by an intruder who used stolen login credentials to get in.

It's against this backdrop that Keeper Security, the world's leading provider of zero-knowledge, enterprise-grade security and encryption software, launched a data center in Australia to cater to its growing customer base in both Australia and the wider APAC region. Based in the United States, Keeper is a multinational cybersecurity company, with customers in 120 countries. Keeper's new data center enables Australian organisations to store data in-country and align with regulatory and compliance requirements such as the Consumer Data Right. It also reduces latency by delivering content as close to end users as possible, which means better performance for Keeper's business and consumer customers.

“Australia is a very exciting market, because it's both a major economic hub and a significant cybercrime target,” says Keeper CEO Darren Guccione. “Demand for our products has grown rapidly in Australia. We needed to make sure that our Australian customers wouldn't run into performance issues, and that we were making it easy for Australian organisations to comply with regional data sovereignty mandates.

Cybersecurity starts with Keeper

The decor in Guccione's Chicago office includes a poster that reads, "Cybersecurity Starts Here." It's a company mantra that reflects the importance of password security as the foundation of every organisation's cybersecurity.

Why are passwords such a vexing problem? Most consumers - and even organisations - engage in poor password security practices, despite having been repeatedly told that doing so is a major security risk. People use weak, common, and easily guessed passwords, such as “qwerty” or their child's name. They don't enable multi-factor authentication (MFA) wherever it's supported. They store their passwords insecurely, on sticky notes that can be viewed by anyone passing by their workstation, or in unencrypted spreadsheets or text files. And they reuse the same passwords across sites and apps.

Cybercriminals count on people reusing their passwords. As soon as they find a set of login credentials that work on one site, Guccione explains, they try to use them everywhere they can: on banking and credit card sites, shopping sites, government services portals, organisational networks, and more.

Keeper's password security platform, which is available for individuals, families, and organisations, automatically generates strong, random, unique passwords for all user apps and accounts, then automatically fills them into websites and applications. It even stores and fills in MFA codes. Keeper is compatible with virtually any device, running any operating system, so users can always access their passwords, whether they're using their phone, tablet, desktop machine, or laptop.

Because Keeper uses a zero-knowledge security architecture, all data is encrypted and decrypted locally, at the device level. Keeper does not hold or manage users' encryption keys, nor does it have any way of accessing users' master passwords or any of the data stored in their Keeper vaults.

Keeper's enterprise-grade software platform is built on a zero-trust security framework and a zero-knowledge security architecture. Keeper Enterprise includes an administrative panel chock-full of tools that enable IT admins to enforce password security policies throughout the organisation. Admins can easily see if users are engaging in poor password security habits, such as using weak passwords, reusing credentials, or not enabling MFA, and take corrective action. The Keeper Admin console also includes role-based access controls (RBAC) to enforce least-privilege policies.

Administration may be delegated according to department or by team leader, and folders and records can be securely shared and revoked. If an administrator or employee leaves the company, their vault can be automatically locked for secure transfer to another user at a later date.

Keeper is designed to be extremely easy to deploy and use, but if organisations need assistance, dedicated, knowledgeable support specialists are available 24x7 for customer support and training.
The Keeper platform's capabilities can be easily extended with advanced add-ons for single sign-on (SSO) integration, Dark Web monitoring, and more.

Keeper plans ambitious expansion down under

In addition to millions of consumers, Keeper's platform protects thousands of businesses, non-profit organisations, and government agencies worldwide, ranging from small office/home office (SOHO) companies, small and mid-market firms and large enterprises.

While COVID-19 has precluded Keeper Security from establishing physical offices in Australia, it's still a long-term goal. “We have big plans for serving the Australian market and the wider APAC region, particularly through our APAC team and channel partners,” Guccione says.

While there is no magic solution that will provide 100% protection against cyberattacks, deploying Keeper's enterprise-grade password management and security solution is an easy and inexpensive way for any organisation to significantly reduce their risk.

Learn more about Keeper security here.

Related stories
Top stories
Story image
Software-as-a-Service
Enterprises yet to fully commit to cybersecurity - CompTIA
“Digital transformation driven by cloud and mobile adoption requires a new strategic approach to cybersecurity, but this poses significant challenges."
Story image
Malware
Kaspersky uncovers new malicious malware NullMixer
Kaspersky researchers have uncovered a new malware stealing users credentials, address, credit card data, cryptocurrencies, and accounts.
Story image
Edge Security
Security practices for modernising the “spaghetti” of on-premises IT
Many organisations are wondering how to securely modernise their workload, often made up of a “spaghetti” of on-premises applications and management consoles.
Story image
Cybersecurity
De-risking the innovation cycle – a modern, real-time approach to security
Many organisations see cybersecurity as an inhibitor of innovation, with burdensome protection measures standing in the way of progress and speed.
Story image
Kaspersky
Cybersecurity loopholes prevalent in South East Asia
In terms of the share of vulnerabilities with publicly available exploits, three countries out of top five are located in Southeast Asia.
Story image
Cloud
How modern IT architectures are moving beyond network visibility
Dealing with multiple cloud providers makes it difficult to identify security threats and performance bottlenecks and troubleshoot issues.
Story image
IT Training
Six ways to transform your cybersecurity training and influence lasting change
If the goal is to win hearts and minds, formal awareness training can fall short and often doesn’t inspire people to care.
Story image
Cybersecurity
Video: 10 Minute IT Jams - An update from SearchInform
Val Novoselova joins us today to to discuss new trends in the information security space, and how SearchInform is adapting to some of the new trends we are seeing.
Story image
Cybersecurity
Hands-on review: Yubikey 5C NFC
Founded in 2007 and specialising in computer and network security, the Swedish company Yubico is now a leader in global authentication.
Story image
Phishing
Vectra Protect team finds Microsoft Teams vulnerability
The Vectra Protect team identified a post-exploitation opportunity in August, allowing malicious actors to steal valid user credentials from Microsoft Teams.
Story image
Observability
Virtualisation Security Market to reach over $7 billion by 2032 - report
A new report from Future Market Insights has found that the Virtualisation Security Market is anticipated to reach a valuation of US $7.6 billion.
Story image
Cybersecurity
Test your API Security with Infinite API Scanner
The effectiveness of API scanning technology can mean the difference between successful and unsuccessful programming outcomes, and often enterprises and IT leaders struggle to get it right.
Aws Marketplace
Learn how to implement a backup and recovery plan for a new generation of Kubernetes-based modern applications
Link image
Story image
Malware
SonicWall threat report mid-year update highlights significant threat variance
The 2022 SonicWall Cyber Threat Report mid-year update from SonicWall gives an in-depth insight into many of the current trends across the threat landscape.
Story image
IoT security
Nozomi Networks and WALLIX strengthen OT network security
By combining WALLIX and Nozomi Networks solutions, end-to-end visibility and traceability for maximum security in an industrial environment is provided.
Story image
Artificial Intelligence
ForgeRock announces next gen identity orchestration capabilities
ForgeRock has launched identity orchestration capabilities to enable enterprises to deliver improved user experiences secured by threat protection.
Story image
Cybersecurity
Confidence in security challenges of hybrid work improving
84% of IT professionals have some degree of confidence in their user access security systems to enable remote work securely and easily, up from 56% in 2021.
Story image
Distributed Denial of Service
Reevaluating DDoS protection for a changing threat landscape
DDoS attacks are gaining in frequency, intensity, duration, and complexity, with attackers employing more vectors
Story image
Cybersecurity
StackHawk launches deeper API security test coverage
Expansion of test coverage includes custom scan discovery, custom test scripts and custom test data for REST APIs.
Story image
Ransomware
Commvault unveils early warning system, Metallic ThreatWise
A first among data protection vendors, the new cyber deception service detects and contains ransomware threats.
Story image
Data Protection
Cloudflare brings Data Localisation Suite to more APAC businesses
This allows any business in these countries to service their data locally while benefiting from the speed, security, and scalability of Cloudflare’s global network.
Story image
Cybersecurity
Aqua Security solution to stop software supply chain attacks
Development and security teams can now proactively address the most critical software supply chain risks from code through runtime.
Story image
Malware
Cybereason delivers nation-state level of protection to enterprises
Cybereason has announced new advancements in Cybereason NGAV that deliver nation-state level protection for organisations of all sizes.
Story image
Threat intelligence
Trellix advances threat intelligence with new research centre
Trellix has announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Story image
Firewall
Barracuda tackles intensified threat landscape with latest releases
"The Barracuda XDR solution combines data across our security stacks through a single dashboard view, giving us the visibility we need."
Story image
Secure Code Warrior
Secure Code Warrior announces Coding Labs innovation
Coding Labs mechanisms allow developers to move from learning to applying secure coding knowledge more efficiently, leading to fewer code vulnerabilities.
Story image
Compliance
Security and compliance challenges halt innovation strategies
"What’s needed is a new mindset and a fresh approach, one in which security and compliance are continuous and actually speed innovation."
Story image
Ransomware
Absolute recognised in KuppingerCole Leadership Compass 2022
The company's Absolute Secure Access was recognised for its ability to protect users and resources while improving the remote worker experience.
Story image
Customer Relationship Management
Why Managed Service Providers are the next big target
MSPs are now such an integral part of the digital ecosystem that companies trust more of their sensitive data with them
Story image
Cryptocurrency
Crypto giveaway scams continue to soar, according to report
There's been a fivefold increase in the number of domains used for crypto giveaway scams that involve fake YouTube streams in the first half of 2022. 
Story image
Web Development
Oracle reveals and releases new Java 19 updates
Oracle has announced the availability of Java 19, which is set to deliver performance, stability, and security improvements for developers.
Story image
Cloud Security
CrowdStrike launches new partner program to expand routes to market
"We developed the CPSP program in partnership with GSIs, MDR vendors, MSPs, MSSPs and Telcos to ensure we were meeting their needs and empowering them."
Story image
Cybersecurity
Macroeconomic headwinds driving security up priority list
Current macroeconomic headwinds are driving security up enterprise’s priority list and reshaping the hardware Security Module market.
Story image
Digital Transformation
Report highlights gaps in trust between enterprises and consumers
ISACA defines digital trust as the confidence in the integrity of relationships, interactions and transactions among providers and consumers.
AWS Marketplace
Whitepaper: A practical guide for mitigating risk in today’s modern applications
Link image
Story image
Cybersecurity
Kaspersky updates endpoint detection and response solution
"One of the goals was to make all the solutions capabilities accessible for all types of our users, even those who are making their first steps in EDR."
Story image
Network Security
20/20 visibility key to improving network security
IT leaders around the world share a ubiquitous appetite for greater network visibility, according to a new study from Infoblox.
Story image
Malware
Absolute Software extends persistence technology to Trellix
Customers can benefit from Absolute’s firmware-embedded connection, ensuring that Trellix's endpoint protection solution remains effective and healthy.
Story image
Enterprise
Delinea shares the importance of PAM, partners and security for modern enterprise
Identity-based security is becoming a crucial tool for modern enterprises as they continue to adapt to different working environments.
Story image
Security vulnerabilities
Claroty finds seven vulnerabilities in Dataprobe iBoot-PDU
The Claroty research team (Team82) has found seven vulnerabilities in Dataprobe's iBoot-PDU, the company's intelligent power distribution unit product.
Story image
Artificial Intelligence
Ordr improves security and management of connected devices
It has implemented more than 80 integrations within the Ordr Data Lake while adding security enhancements to accelerate zero trust segmentation.
Story image
Partnerships
Concentric AI, Snowflake to enhance data security posture
The integration benefits joint customers by making Concentric AI's data security posture management capabilities readily available on the Snowflake Data Cloud.