Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Passwordless multi-factor authentication technology provider Trusona this week announced it has raised $20 million as part of a Series C funding round. [Read More]
Weak security measures in place at several major wireless carriers in the United States make it easy for attackers to perform SIM swap attacks on prepaid accounts, a recent study found. [Read More]
Facebook, Samsung and Ring have unveiled new or improved privacy and security tools at CES 2020. [Read More]
OpenSSL has evolved a great deal in terms of security since the disclosure of the Heartbleed vulnerability back in 2014. [Read More]
An Elasticsearch cluster containing information on Honda owners in North America was recently found to be accessible from the Internet without any authentication. [Read More]
Facial recognition systems can produce wildly inaccurate results, especially for non-whites, according to a US government study. [Read More]
Google announces plans to turn off access to G Suite account data for less secure apps (LSAs), as they represent a potential security risk for users. [Read More]
A credential harvesting campaign has been targeting multiple government procurement services in the United States and abroad, Anomali reveals. [Read More]
Critical infrastructure protection company OPSWAT acquires Network Access Control (NAC) and Software Defined Perimeter (SDP) solutions provider Impulse. [Read More]
Microsoft this week issued guidance regarding Windows Hello for Business (WHfB) public keys that persist even after the devices they are tied to are removed from Active Directory. [Read More]
- 1 of 69
- ››
FEATURES, INSIGHTS // Identity & Access
As the workforce continues to evolve, a one-size-fits-all approach won’t work for different identity and access management needs across organizations.
Perimeter-based security, which focuses on securing endpoints, firewalls, and networks, provides no protection against identity- and credential-based threats.
Change may not always be on the docket, but when it is, how can we embrace it, understand it, and work to create a constructive environment around it?
In just about every case of digital identity, there seems to be a set of credential recovery mechanisms that are weaker than the authentication method itself.
Organizations should recognize that not all authenticators are equally vulnerable to the mechanisms used to break the trust chain, which range from simple guesswork to coercion.
Now is the time to evaluate what methods of authentication will best serve your organization on the path to a passwordless future.
If you want to succeed with FIDO, you have to be ready. Now is the time to assess your organization’s authentication needs, how they are evolving, and the dynamics of your user population.
It’s time to address some myths about how facial recognition works, to help increase consumer comfort with biometric-authentication technology.
Companies should consider moving to a Zero Trust approach, powered by additional security measures such as multi-factor authentication, to stay ahead of the security curve and leave passwords behind for good.
The ultimate goal for identity and access management (IAM) is not to find the unbreakable or “unhackable” code for authentication; rather, it’s to layer security to create a much stronger identity assurance posture.
- 1 of 9
- ››
SecurityWeek Daily Briefing
- Trump, Johnson Talk Security Ahead of Huawei Decision
- Cisco Webex Vulnerability Exploited to Join Meetings Without a Password
- Questions Linger Over Investigation Into Jeff Bezos' Hacking
- Greece: Government Websites Hit by Cyberattack
- 2020 Rings in a New Era of Cyber Attacks - and it's Getting Personal
- Microsoft Releases Azure Security Benchmark
- Bipartisan Bill Aims to Reform NSA Surveillance of Americans
- Privacy Firm Finds Unsecured Cannabis Patient Information
- The More Authentication Methods, the Merrier
- UK 'to Decide on Huawei 5G Next Week'
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy