Apr 30 · 3 min read
Passwordstate, an enterprise password manager developed by Click Studios, suffered a supply chain attack between April 20 and April 22. The company notified its customers over email and warned them to reset any passwords which were stored in Passwordstate.
In an advisory statement published on April 24, Click Studios said the attackers used sophisticated techniques to compromise Passwordstate’s update functionality. Once installed, the malicious updates established contact with the attacker's server to fetch a malware ("upgrade_service_upgrade.zip") that extracted Passwordstate data and exported the information back to the attacker's CDN network.
If you are a Passwordstate customer disappointed over the recent developments and are looking for a secure, reliable alternative, we recommend you to check out Securden Unified Privileged Access Manager (PAM).
Securden’s Unified PAM is a full-featured privileged access security solution that helps IT teams securely store, protect, and automate the management of all high privileged account passwords, keys, and identities. It enables IT administrators to centrally control, audit, monitor, and record all access to critical IT assets and thereby reduce risks related to privileged access.
In a single package, Securden Unified PAM delivers:
Securden makes it easy to import your data from any password manager or privileged access manager like Passwordstate. You can use the export function in Passwordstate to create a CSV file of your data and import the file into Securden Unified PAM.
Securden also comes with a powerful discovery engine that automatically discovers various types of devices, IT assets, and privileged accounts present in your network during deployment.
It takes only a few minutes to deploy the software package and get started. Securden bundles everything needed - you don’t require any other hardware or software to get started. Securden is simple, intuitive, and straightforward all the way.
A team of technical support experts ready to assist you and ensure that you derive the full value out of the product, during your implementation stage and throughout your journey.
If you are looking to switch from Passwordstate, we would offer a 1-year subscription to Securden Unified PAM, absolutely free of cost. No strings attached, no credit cards required, no obligation on your part.
Just email us proof of your Passwordstate usage (like a screenshot of the license key) to firstname.lastname@example.org. We will provide you with an equivalent license key. Alternatively, you can fill this form.
If you are happy with the product, you may purchase a subscription. If not, you may simply let the free license key expire.
May God defend me from my friends
As stories of trusted insiders causing information security breaches continue to unfold, it’s time organizations woke up to...
Dec 21 · 4 min read
Ransomware attack on Colonial Pipeline: Executing cyberattacks, now a child's play!
With the easy availability billions of compromised credentials on the dark web, and the practice of password reuse rampant, hackers...
jun 7 · 5 min read
Eliminating Admin Rights and Controlling Applications (Part 3)
One of the most effective approaches to reducing risks is eliminating the local admin accounts altogether and...
May 17 · 4 min read
Looking for a Passwordstate alternative?
Passwordstate, an enterprise password manager developed by Click Studios, suffered a supply chain attack between...
Apr 30 · 3 min read
Local Admin Accounts Management: Microsoft LAPS Vs. PAM (Part-2)
In the previous post, we dealt with the importance of local admin accounts, the associated security risks, and...
Apr 06 · 3 min read
Top 10 password policy recommendations for sysadmins in 2021
Passwords are omnipresent in our personal and business digital environments. An average person has at least...
Apr 01 · 6 min read
Local Admin Accounts - Security Risks and Best Practices (Part 1)
We are all too familiar with the local administrator account that gets created automatically when installing a Windows...
Mar 19 · 4 min read
Poor password security practices cause massive security breaches
Weak passwords, password reuse, password sharing, hard-coded credentials, lax measures to storing credentials...
Mar 13 · 6 min read