Cybersecurity Resources

RapidIdentity Unveils SafeID Feature Integrating SpyCloud Breach Data

• By Kristal Kuykendall
• 01/13/22

Identity Automation, the digital identity platform for education, on Thursday unveiled RapidIdentity SafeID, a new option for education clients using the company's flagship RapidIdentity platform to manage identities and access.

RapidIdentity SafeID constantly compares user credentials at client K–12 schools and universities against data in SpyCloud’s proprietary repository and will alert and/or automate security measures when compromised credentials are discovered so clients’ IT managers can take action to prevent account takeovers and targeted attacks, according to a news release.

“This can shorten the window of exposure and lessen the chance of a data breach since 80% of account takeovers occur soon after a data loss, often before the public knows,” the company said.

Remote learning during the pandemic has expanded the threat landscape significantly, and cyberattackers are increasingly focusing on the education sector, according to a recent report by the Information Systems Audit and Control Association. Stolen credentials are the most common method cybercriminals use to access school networks and data, and breaches can be very costly. Strong password policies aren't offering enough protection, expert say.

“The education sector is the most targeted industry for ransomware attacks, and the average cost to remediate a data breach is well in excess of $2.5 million when you consider all associated expenses,” said Identity Automation CEO Jim Harold. “Many people reuse passwords across dozens of other sites and apps, increasing the potential for compromised credentials. RapidIdentity SafeID is unique because it offers insight and a path to threat remediation on a platform specifically built for edtech ecosystems. It provides real relief to stressed IT teams.”

RapidIdentity SafeID alerts the school IT staff automatically when compromised credentials are detected in SpyCloud's repository — the world's largest repository of data recaptured from breaches and other underground sources. The software also supports automated, IT-determined responses from the school to quickly limit the vulnerability.

Implementation of RapidIdentity SafeID doesn't require professional services or special training, the company said. As an add-on feature of the RapidIdentity platform, SafeID just requires a license and a quick tutorial for school IT professionals on how they can act on the alerts to swiftly address compromised credentials.

RapidIdentity is used by hundreds of K–12 districts and higher ed institutions to connect applications and data and better position campus IT professionals to protect their networks and data, automate and workflows, and provide operational insights. It is the flagship platform of Identity Automation, based in Houston. Visit the RapidIdentity website for more information.