The Bitium Blog

Updates and advice on Identity and Access Management

16 of the World's Biggest Data Breaches & Hacks of 2016
Posted by Conrad Smith on Jan 4, 2017

 While looking forward to 2017, it is also time to take stock of last year. What follows is a list of the 15 biggest data breaches by record count for 2016. We compile this list every year, and just by sheer record count, 2016 blew previous years away (thank you Yahoo!), and is an eye watering compilation of sensitive information and credential theft.

Read More

Topics: Industry, Security

3 things to expect in 2017
Posted by Scott Kriz on Dec 21, 2016

2017 image.jpeg “Change is the only constant in life.”

The words Greek philosopher Heraclitus once said could not be any truer than in today’s world.

As we get close to the end of the year, it is a good time to reflect on what has been accomplished over the last 12 months and what we face in the year to come. Below are 3 things to expect in 2017:



Read More

Topics: Customers, Security

2016 #CustomerLove Roundup
Posted by Amanda Bretz on Dec 14, 2016

customerlove.jpgSince we consider ourselves partners in identity and access management to our customers, we’re always thrilled to see their successes and announcements in the news. We have a lot of respect for the ways they’re making strides in their industries and pushing the envelope to create elegant solutions to the most complex problems. Here are some of our favorite highlights from 2016:




Read More

Topics: Customers

Celebrating Computer Security Day
Posted by Conrad Smith on Nov 30, 2016

worldsecurityday2 (1).jpgToday is Computer Security Day. From smartphones to the ever expanding world of IoT, so much of daily life now depends upon or is directly impacted by a multitude of computer. As a result, there’s it’s in everyone’s best interest protect all of our connected devices, not just laptop or desktop computers. In the spirit of World Computer Security Day, , we’ve pulled together a few pieces of information and suggestions to help improve your and also the world’s computer security.



Read More

Topics: Security

Giving Back for #GivingTuesday
Posted by Kaity Harrington on Nov 29, 2016

GivingTuesday11.29.2016.pngAs a company, we practice gratitude every Friday. Our sales team takes that concept up a notch and is grateful every morning in their daily standup. We work a block away from the beach in sunny Southern California and are lucky to work in a team-working environment. We’re grateful for so many things, that we’re driven to give back.

Read More

Topics: Company

Secure Authentication and Authorization: A Gateway to Selling to the Enterprise
Posted by Erik Gustavson on Nov 16, 2016

base-devices@2x-2.pngIn today’s world of fast-paced app development, growing business-to-business (B2B) application services are looking to quickly add midmarket and enterprise clients to their customer base. While these potential enterprise customers seek to adopt SaaS tools to increase productivity, trust in app security is a prerequisite. Success in the crowded B2B app marketplace has been shown to rely heavily on a given app’s ability to establish secure connections to existing identity providers. For this reason alone, CTOs are willing to invest highly valuable time and development resources in building out authentication and authorization capabilities, pulling technical focus away from core app functionality.

Read More

Topics: IT, Security

The 3-Step Antidote to Security Fatigue
Posted by Amanda Bretz on Nov 2, 2016

security fatigue.jpgLast month NIST released a study warning of widespread security fatigue as end users report feeling defenseless against malicious attacks. Survey respondents displayed a general frustration and weariness around online account security. As a result, many have taken the stance of merely hoping that they’re not a high-value target instead of taking steps to fortify their defenses.

Read More

Topics: IT, Security

Focusing on the Journey, Not the Destination: Maximizing Existing Security Investments
Posted by Conrad Smith on Oct 27, 2016

journey.jpegA well functioning and capable security program requires a blend of tools and solutions. Organizations typically make purchases based upon their immediate needs (or maybe those they had 12 months ago when the thought first crossed someone’s mind), and then hopefully implement said purchases. Buying and implementing though is just a portion of the lifecycle of those tools. What’s often forgotten along with things like daily care and feeding, is to periodically reassess that investment.

Read More

Topics: application management, IT, cloud, Security

The Cow and The Ditch: What To Do After A Data Breach
Posted by Conrad Smith on Oct 26, 2016

planning.jpgWhile the proper thing is to focus on avoiding data breaches and security incidents before they even happen, unfortunately they still do. According to the Identity Theft Resource Center, there have been nearly 800 data breaches over the course of the year so far with nearly 30 million records exposed. Many of these were the result of basic employee error, but some have been much more sophisticated. While you might not anticipate a breach, you should at least plan for one.

Read More

Topics: IT, Security

Passwords. The Pros, The Cons, The Alternatives.
Posted by Conrad Smith on Oct 20, 2016

Password SecurityEnter your username and password. The format has been around for ages, and is so commonplace now that password fatigue is a real thing. The end result is that the same username and password combination -- maybe variations on the same theme because that seemed enough at the time -- are repeated and propagated across different sites and applications for years. The risk associated with sticking to that habit has grown immensely with the ever-increasing number of data breaches and now, more than ever, the approach to passwords has to change.

Read More

Topics: IT, cloud, Security