Keeper Security: Comprehensive, Zero-Trust, Enterprise-Grade Password Security and Management

Craig Lurey, CTO and Co-Founder and Darren Guccione, CEO, and Co-Founder Cyberattacks are quickly becoming more frequent, sophisticated and expensive. The first half of 2021 saw nearly double the number of ransomware attacks as the same period in 2020, and data breach costs have reached record highs. The average data breach now costs organizations about $4.24 million, a 10% increase from 2020. In addition to hammering organizational budgets, ransomware, data breaches, and other cyberattacks negatively impact companies’ reputation, profitability, and overall security posture.

What’s causing this explosion in cyberattacks? Many experts point at the rapid digital transformations that companies were forced to embark on due to the COVID-19 pandemic. It’s true that during the mad rush to enable and secure armies of distributed workers, cybersecurity frequently took a back seat to business continuity. However, “remote work,” in and of itself, isn’t the root cause of the rise in security incidents; weak or stolen passwords are. Over 80% of successful data breaches, and about 75% of ransomware attacks, involve compromised user credentials.

With a set of working user credentials in hand, cybercriminals can bypass firewalls, anti-virus software, and other technical safeguards to enter organizational systems undetected. They then move laterally within the system to escalate their privileges, exfiltrate data, delete or alter files, and plant malware. They’ve got plenty of time to poke around, too. When cybercriminals use stolen credentials to breach a network, they remain undetected for an average of 250 days.

While there is no magic solution that will provide 100% protection against any and all cyberattacks, the simple act of securing a company’s passwords can prevent the overwhelming majority of data breaches and ransomware attacks. This is great news for large multinational enterprises and small startups alike. If your organization has no idea how to get started with cybersecurity, deploying an enterprise-grade password management and security solution is an easy and inexpensive way to secure your systems against the most common attack vector.

Keeper Security’s top-rated, enterprise-grade cybersecurity platform protects organizations of all sizes, in every industry sector, with zero-trust and zero-knowledge password security and encryption, along with Dark Web monitoring, digital file storage and secure messaging.

Cybersecurity Starts with Keeper

Rapidly deployable in any data environment, with no additional software or equipment required, Keeper is far more than just a password manager; it’s a comprehensive, enterprise-grade cybersecurity platform that protects all endpoints and infrastructure with a zero-trust and zero-knowledge security architecture.

“Keeper is the most effective defense against ransomware attacks and other password-related data breaches,” explains Darren Guccione, Keeper’s CEO and Co-Founder. “It provides mission-critical visibility and control over password security across the entire organization, including dark web visibility for threat migration.
Keeper also integrates and provisions quickly with any infrastructure and identity platform across cloud, on-prem and hybrid environments.”


Keeper gives your organization everything it needs for its employees to create and store high-strength, random passwords for all of their apps and online accounts. Everything is stored in a secure, digital vault that acts like a virtual safety deposit box

Keeper automatically generates strong, random, unique passwords for all user apps and accounts, then automatically fills them into web and mobile login forms. Because Keeper uses a zero-knowledge security architecture, all data is encrypted and decrypted locally, at the device level. Keeper does not hold or manage users’ encryption keys and has no way of accessing users’ master passwords or any of the data stored in their Keeper vaults.

With Keeper, Admins can easily see if users are engaging in poor password security habits, such as using weak passwords or reusing access credentials across multiple accounts, and take corrective action. Admins can also use role-based access controls (RBAC) to enforce least privilege policies. Administration may be delegated according to department or by team leader, and folders and records can be securely shared and revoked. If an administrator or employee leaves the company, their vault can be automatically locked for secure transfer to another user at a later date.

In addition to securing company passwords, organizations can use Keeper to prevent theft of digital intellectual property and other sensitive data with Secure File Storage. This add-on enables users to store sensitive files, documents, digital certificates, private keys, images, and videos in their Keeper vaults and securely share them with colleagues. Keeper’s zero-knowledge security architecture ensures that only the user can access and decrypt their stored files, and file-sharing is performed using PKI to ensure that only the recipient of a shared file can decrypt it.

Keeper is designed to be extremely easy to deploy and use, but if admins need help, Keeper’s dedicated support specialists are available 24x7 for customer support and training.

The platform’s capabilities can be easily extended with advanced add-ons for SSO integration, Dark Web monitoring, and more. “We have several patented applications, the first of which is called Keeper SSO Connect™, which is a SAML 2.0 service that quickly and seamlessly integrates with a customer's existing SSO identity provider. This enhances and expands SSO deployment and capabilities with zero-knowledge password management and client-side, end-to-end encryption," says Guccione. Keeper SSO Connect fills SSO security gaps and enables organizations to significantly minimize their risk of password-related cyberattacks.

Another valuable add-on is Keeper’s ARAM (Advanced Reporting and Alerts) module, which enables IT and security admins to monitor their user population and receive real-time email, SMS text, or webhooks notifications of user activity that could indicate security policy or compliance violations, such as a user disabling 2FA or setting a weak password.
“ARAM has hundreds of different parameters that admins can set and receive notifications for. They can even track those notifications and receive real-time alerts. It's all about visibility, access and control over the entire infrastructure.” explains Guccione.

BreachWatch for Business, Keeper’s Dark Web monitoring solution, protects organizations against third-party vendor breaches by monitoring Dark Web forums and notifying admins if any employee passwords have been compromised. This allows administrators to force password resets immediately, minimizing the risk of cybercriminals using them to breach the organization's network.

Keeper’s highly competitive pricing structure balances affordability with security and ease of use, which has enabled the platform to attract a broad clientele and user base. Millions of consumers and thousands of organizations worldwide trust Keeper to secure their passwords and digital information.

From Simple Beginnings to Strategic Expansion

Keeper’s origins date back to 2009, when Keeper entered the market as a consumer product—one of the earliest password manager apps in the App Store.

“My business partner and co-founder, Craig Lurey, began building it during a flight to Asia in late 2008,” Guccione recalls. “Apple had recently launched their first mobile-app SDK. He had created a container-like app for users to store codes, lists and data. This was the spark that led to Keeper’s proliferation.”

"For all its features and security capabilities, Keeper is a highly cost-effective cybersecurity solution, one of the least expensive items in any organization’s security stack"

Within six months, Keeper had been downloaded 500,000 times. The rest, as they say, is history. Guccione and Lurey launched the paid version of the application in September 2010, and they’ve been enhancing and building upon it ever since. Today, Keeper boasts millions of users, and the product is sold in over 120 countries, in 21 different languages.

“Over the past four years, Keeper’s biggest growth segment has been the B2B market, which is exhibiting triple-digit growth,” Guccione says. “We’re protecting SOHOs (Small Office Home Office), small and medium-sized businesses, mid-market enterprises, and large organizations, along with schools and the public sector. The B2B and B2G markets are an extremely important customer base. Both private businesses and public-sector organizations need help because today’s cybercriminals are heavily funded, highly skilled and organized and technically advanced - they’re attacking organizations every second of every day.”

Keeper is rapidly expanding into the public sector market, which cybercriminals are heavily targeting. “State and municipal agencies are getting hit especially hard by ransomware attacks, and Keeper is here to help them,” Guccione explains. “We know they tend to have much tighter budgets than federal agencies, but that’s okay. For all its features and security capabilities, Keeper is a highly cost-effective cybersecurity solution that is budget-focused for the customer. It’s important to make the product accessible to organizations so they can protect against ransomware attacks and other common attack vectors.”

Company
Keeper Security

Headquarters
Chicago, IL

Management
Craig Lurey, CTO and Co-Founder and Darren Guccione, CEO, and Co-Founder

Description
Protecting businesses across every major industry sector, Keeper is a top-rated provider of zero-knowledge, enterprise-grade security and encryption software covering password management, dark web monitoring, digital file storage, and secure messaging. BreachWatch for Business, Keeper’s Dark Web monitoring solution, protects organizations against third-party vendor breaches by monitoring Dark Web forums and notifying admins if any employee passwords have been compromised. This allows administrators to force password resets immediately, minimizing the risk of cybercriminals using them to breach the organization's network. Keeper’s highly competitive pricing structure balances affordability with security and ease of use, which has enabled the platform to attract a broad clientele and user base. Millions of consumers and thousands of organizations worldwide trust Keeper to secure their passwords and digital information

Keeper Security