Identity & Access

Okta Broadens Scope of Data Breach: All Customer Support Users Affected

0ktapus, HAR files, IAM, Identity & Access, Incident Response, Lapsus$, Okta, phishing /

Okta Broadens Scope of Data Breach: All Customer Support Users Affected 29/11/2023 at 19:01 By Ryan Naraine Okta expands scope of October breach, saying hackers stole names and email addresses of all its customer support system users. The post Okta Broadens Scope of Data Breach: All Customer Support Users Affected appeared first on SecurityWeek. This […]

React to this headline:

Loading spinner

Okta Broadens Scope of Data Breach: All Customer Support Users Affected Read More »

Amazon One Enterprise Enables Palm-Based Access to Physical Locations, Digital Assets

access, AWS, Cloud, cloud security, IAM, Identity & Access /

Amazon One Enterprise Enables Palm-Based Access to Physical Locations, Digital Assets 28/11/2023 at 17:17 By Eduard Kovacs AWS announces Amazon One Enterprise, a palm-based identity service that enables users to easily access physical locations and digital assets. The post Amazon One Enterprise Enables Palm-Based Access to Physical Locations, Digital Assets appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Amazon One Enterprise Enables Palm-Based Access to Physical Locations, Digital Assets Read More »

US Teen Pleads Guilty to Credential Stuffing Attack on Fantasy Sports Website

credential stuffing, cybercrime, DraftKings, Identity & Access, Joseph Garrison, Malware & Threats /

US Teen Pleads Guilty to Credential Stuffing Attack on Fantasy Sports Website 17/11/2023 at 19:18 By Ionut Arghire Wisconsin teenager Joseph Garrison has admitted in court to launching a credential stuffing attack on a betting website. The post US Teen Pleads Guilty to Credential Stuffing Attack on Fantasy Sports Website appeared first on SecurityWeek. This

React to this headline:

Loading spinner

US Teen Pleads Guilty to Credential Stuffing Attack on Fantasy Sports Website Read More »

Google Adds Passkey Support to New Titan Security Key 

Identity & Access /

Google Adds Passkey Support to New Titan Security Key  16/11/2023 at 21:17 By Eduard Kovacs Google launches new Titan security key with passkey support, allowing users to store up to 250 unique passkeys. The post Google Adds Passkey Support to New Titan Security Key  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Google Adds Passkey Support to New Titan Security Key  Read More »

Webinar Today: Using Governance and Privilege to Gain Control Over Third-Party Access

Identity & Access /

Webinar Today: Using Governance and Privilege to Gain Control Over Third-Party Access 14/11/2023 at 16:16 By SecurityWeek News Learn how to create more trust in your third party relationships by adding sustainable processes and tools that enable you to control access. The post Webinar Today: Using Governance and Privilege to Gain Control Over Third-Party Access

React to this headline:

Loading spinner

Webinar Today: Using Governance and Privilege to Gain Control Over Third-Party Access Read More »

Palo Alto to Acquire Talon, Intensifying Competition in Cloud Data Security 

Chromium, cloud security, Enterprise Browser, Funding/M&A, Identity & Access, Island, M&A Tracker, Palo Alto Networks, Talon /

Palo Alto to Acquire Talon, Intensifying Competition in Cloud Data Security  06/11/2023 at 20:31 By Ryan Naraine Technology powerhouse Palo Alto Networks is officially on a billion-dollar shopping spree in the cloud data security space. The post Palo Alto to Acquire Talon, Intensifying Competition in Cloud Data Security  appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Palo Alto to Acquire Talon, Intensifying Competition in Cloud Data Security  Read More »

Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop

BeyondTrust, CISO Strategy, cloud security, Cloudflare, Data Breaches, HAR files, Identity & Access, Okta /

Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop 04/11/2023 at 19:31 By Ryan Naraine Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop. The post Okta Hack Blamed on Employee Using Personal Google Account on Company

React to this headline:

Loading spinner

Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop Read More »

IAM Credentials in Public GitHub Repositories Harvested in Minutes

cloud security, credentials, IAM, Identity & Access /

IAM Credentials in Public GitHub Repositories Harvested in Minutes 31/10/2023 at 18:49 By Ionut Arghire A threat actor is reportedly harvesting IAM credentials from public GitHub repositories within five minutes of exposure. The post IAM Credentials in Public GitHub Repositories Harvested in Minutes appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

IAM Credentials in Public GitHub Repositories Harvested in Minutes Read More »

Extending ZTNA to Protect Against Insider Threats

Identity & Access, Network Security, Security Architecture, zero trust, ZTNA /

Extending ZTNA to Protect Against Insider Threats 31/10/2023 at 15:31 By Etay Maor One of the main reasons why ZTNA fails is that most ZTNA implementations tend to focus entirely on securing remote access. The post Extending ZTNA to Protect Against Insider Threats appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Extending ZTNA to Protect Against Insider Threats Read More »

Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft

cybercrime, Identity & Access, MFA, Scattered Spider, SIM swapping, Tracking & Law Enforcement /

Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft 30/10/2023 at 18:46 By Ionut Arghire A 20-year-old Floridian was sentenced to prison for his role in a hacking scheme that led to the theft of $1 million in cryptocurrency. The post Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft Read More »

SolarWinds Patches High-Severity Flaws in Access Rights Manager

CVE-2023-35182, CVE-2023-35185, CVE-2023-35187, Identity & Access, Network Security, SolarWinds, Vulnerabilities /

SolarWinds Patches High-Severity Flaws in Access Rights Manager 23/10/2023 at 21:49 By Ionut Arghire SolarWinds patches high-severity flaws in its Access Rights Manager product, including three unauthenticated remote code execution issues. The post SolarWinds Patches High-Severity Flaws in Access Rights Manager appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

SolarWinds Patches High-Severity Flaws in Access Rights Manager Read More »

Okta Support System Hacked, Sensitive Customer Data Stolen

BeyondTrust, Data Breaches, Identity & Access, Lapsus$, Okta, Ransomware /

Okta Support System Hacked, Sensitive Customer Data Stolen 21/10/2023 at 00:46 By Ryan Naraine Okta warns that hackers broke into its support case management system and stole sensitive data that can be used to impersonate valid users. The post Okta Support System Hacked, Sensitive Customer Data Stolen appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Okta Support System Hacked, Sensitive Customer Data Stolen Read More »

Prove Identity Snags $40M Funding for ID Verification Tech

Capital One Ventures, Fraud & Identity Theft, Funding/M&A, Identity & Access, MassMutual Venture, Payfone, Prove Identity /

Prove Identity Snags $40M Funding for ID Verification Tech 17/10/2023 at 19:32 By Ryan Naraine Startup with roots in the ecommerce mobile payments space raises $40 million for digital identity verification and authentication technology. The post Prove Identity Snags $40M Funding for ID Verification Tech appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Prove Identity Snags $40M Funding for ID Verification Tech Read More »

Anonybit Raises $3 Million for Biometric Authentication Platform

biometric, Cybersecurity Funding, identity, Identity & Access, seed funding /

Anonybit Raises $3 Million for Biometric Authentication Platform 17/10/2023 at 16:32 By Ionut Arghire Anonybit has raised $3 million in seed funding extension for its biometric authentication and data protection solutions. The post Anonybit Raises $3 Million for Biometric Authentication Platform appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Anonybit Raises $3 Million for Biometric Authentication Platform Read More »

Microsoft Improving Windows Authentication, Disabling NTLM

authentication, Identity & Access, Kerberos, Microsoft, NTLM /

Microsoft Improving Windows Authentication, Disabling NTLM 16/10/2023 at 15:33 By Ionut Arghire Microsoft is adding new features to the Kerberos protocol, to eliminate the use of NTLM for Windows authentication. The post Microsoft Improving Windows Authentication, Disabling NTLM appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Microsoft Improving Windows Authentication, Disabling NTLM Read More »

Linux Foundation Announces OpenPubkey Open Source Cryptographic Protocol

Identity & Access, open source, supply chain, Supply Chain Security /

Linux Foundation Announces OpenPubkey Open Source Cryptographic Protocol 05/10/2023 at 15:31 By Eduard Kovacs The Linux Foundation has announced OpenPubkey, an open source cryptographic protocol that should help boost supply chain security.  The post Linux Foundation Announces OpenPubkey Open Source Cryptographic Protocol appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Linux Foundation Announces OpenPubkey Open Source Cryptographic Protocol Read More »

CISA, NSA Publish Guidance on IAM Challenges for Developers, Vendors

Government, guidance, Identity & Access /

CISA, NSA Publish Guidance on IAM Challenges for Developers, Vendors 05/10/2023 at 15:31 By Ionut Arghire New US government guidance details the challenges that application developers and vendors face in identity and access management (IAM). The post CISA, NSA Publish Guidance on IAM Challenges for Developers, Vendors appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

CISA, NSA Publish Guidance on IAM Challenges for Developers, Vendors Read More »

Navigating the Digital Frontier in Cybersecurity Awareness Month 2023

Identity & Access, Network Security, zero trust, ZTNA /

Navigating the Digital Frontier in Cybersecurity Awareness Month 2023 21/09/2023 at 20:01 By Torsten George ZTNA stands out as a solution that enables organizations to minimize their attack surface while ensuring the productivity and security of their remote workforce. The post Navigating the Digital Frontier in Cybersecurity Awareness Month 2023 appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Navigating the Digital Frontier in Cybersecurity Awareness Month 2023 Read More »

CISA Releases New Identity and Access Management Guidance

CISA, Government, IAM, identity, Identity & Access, Security Architecture /

CISA Releases New Identity and Access Management Guidance 18/09/2023 at 15:03 By Ionut Arghire CISA has released new guidance on how federal agencies can integrate identity and access management into their ICAM architecture. The post CISA Releases New Identity and Access Management Guidance appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

CISA Releases New Identity and Access Management Guidance Read More »

AuthMind Scores $8.5M Seed Funding for ITDR Tech

Ballistic Ventures, Cisco, cloud security, funding, Funding/M&A, Identity & Access, ITDR, Oort /

AuthMind Scores $8.5M Seed Funding for ITDR Tech 13/09/2023 at 21:31 By Ryan Naraine Maryland startup scores $8.5 million in seed-stage funding to compete in the Identity Threat Detection and Response (ITDR) category. The post AuthMind Scores $8.5M Seed Funding for ITDR Tech appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

AuthMind Scores $8.5M Seed Funding for ITDR Tech Read More »