How JumpCloud’s Windows App Can Eliminate Phishing Attacks

Written by Leia Schultz on August 14, 2020

Share This Article

Even simple identity security chores like regular password updates and multi-factor authentication add hurdles to an employee’s day. But with nearly 90% of organizations surveyed in Proofpoint’s latest State of the Phish reporting they experienced phishing attacks last year, there’s no denying that phishing is one of a bad actor’s top attack vectors for gaining access to corporate data and resources.

You already know that your company can’t ignore phishing threats. The secret weapon to stopping these attacks is teamwork between IT and employees: IT administrators can help their employees become less susceptible to phishing attacks by training them on how to use implemented identity and access management (IAM) for credential management — which can be both user-friendly and loved by IT teams. Enter: JumpCloud’s Windows® App, a new system application for Windows devices that checks these boxes. 

Tell Me About the JumpCloud Windows App

JumpCloud’s platform offers device-centric security features that protect employees at work while reducing task friction for end users and admins. The newest feature in this category is the JumpCloud Windows App.

The Windows App lives as a native system app, making it easy for users to access when they’re working on their device. For admins, the app helps reduce support tickets about password resets and updates thanks to users’ familiarity with their device. The app isn’t just one more password tool employees need to use; it’s a small part of their daily workflow that actually speeds up getting to the digital tools they work with.

Employees on JumpCloud-managed Windows devices use the Windows App to update just one password for their single JumpCloud corporate identity, which provides access to every work app and resource they need in their JumpCloud User Portal. This means end users must only remember one set of credentials to get to the many resources they require for their job, across G Suite™ or Microsoft 365™ passwords, their network/RADIUS password, their on-premises or cloud-based application passwords, and more. They don’t need to remember a URL to go to to access their resources, either: The app provides a direct link to where they’re located. 

While end users may not recognize another critical benefit of using JumpCloud’s Windows App, IT pros will: its anti-phishing benefits. The app hardens a system’s security by allowing password changes to happen in a local environment — the employee’s Windows device — to completely eliminate the internet and email attack vectors that bad actors target to corrupt employee credentials.

This makes the Windows App the most secure method for end users to update their credentials: The App leverages the guaranteed protection from the JumpCloud System Agent’s mutual TLS connection from the system to JumpCloud’s cloud-based services; this ensures the transmission of credential data for its hashing is encrypted.

(Yes, there’s a macOS® equivalent with even more robust capabilities: JumpCloud’s Mac® App offers the same functionalities as well as passwordless access into the JumpCloud User Portal to eliminate the friction of credential re-entry after device log in.)

Training End Users is a Top Security Priority

Proofpoint’s report also found that almost 80% of surveyed companies have proved that security awareness training reduces employees’ phishing susceptibility. While employees don’t always understand the nuances of their corporate and online identities, including the risks of today’s attack vectors, adopting and practicing good security habits doesn’t need to be a hassle.

Regular training and communication with employees make security part of company culture. If everyone is participating in their organization’s security then every employee knows it’s a business priority to take seriously, which can help take the edge off completing necessary identity management tasks.

Security training should always be specific to the IAM solutions in place at a company. For example, at businesses that use the JumpCloud Windows App, IT can help by reinforcing that it’s the one place an employee should trust to manage their credentials is their device (as opposed to an email- or web-based route). Employees should also rely on their IT teams to provide them with information on how to use security solutions as well as why it’s so critical. Simple communication toolkits sent to end users can help them make smart decisions at work. 

And remember: communicating security procedures to employees doesn’t need to feel threatening. Make sure to emphasize the benefit to employees, such as how a tool like the Windows App lets an end user log into their device and User Portal, and then enables them to skip further identity challenges when they’re accessing their SSO apps.

Other tools like LastPass and KnowBe4’s Phish Alert Button — which JumpCloud employees use — help end users make smart identity and access decisions at work. JumpCloud’s security model involves regular employee security training and testing to ensure security is practiced daily. We also use TOTP MFA, something that’s appreciated as a way that’s protecting employees and company. 

Make Security an Easy Step in Workflows

Are you 100% confident that every employee at your business has the discipline to spot a spear-phishing email requesting a password change? Don’t worry: Not many IT admins are, but there are ways to get closer to this goal. 

At small to midsize businesses, there might be some things in place like a password manager or SSO solution for web apps, however their security posture is likely a patchwork of different tools rather than a centralized authority. Enterprises are more likely to understand and have ingrained security practices, but, similarly, friction arises when they rely on cobbled-together tools that require employees to keep up with.

JumpCloud’s Windows App radically simplifies that: With a single identity, employees on JumpCloud-managed Windows devices use a native app to update their password and their credentials automatically across every endpoint and service they have access to. Because employees can manage their credentials with the Windows App, they can avoid email- and web-based phishing attempts by bad actors thanks to the app’s device-level password update capabilities.

Beyond the app, JumpCloud’s security policies and MFA help IT teams take further steps to enforce their organization’s security posture and help protect employees. The full JumpCloud platform provides admins with unique multi-OS control in its consolidated identity and device access management platform.

Try JumpCloud free with up to 10 users, 10 systems, and 10 days of Premium in-app chat support as you evaluate JumpCloud’s endpoint security and optimized end user experience.

Continue Learning with our Newsletter