MFA - Security Ticks

Strengthening defenses against nation-state and for-profit cyber attacks

access management, credentials, critical infrastructure, cyberattacks, cybersecurity, Don't miss, Hot stuff, identity, MFA, Video, Xage Security / SecurityTicks

Strengthening defenses against nation-state and for-profit cyber attacks 2024-04-04 at 06:32 By Help Net Security There is an urgent need to secure tactical, operational, and strategic critical assets from the edge to the core. In this Help Net Security video, Geoffrey Mattson, CEO of Xage Security, discusses the steps enterprises and critical infrastructure must take […]

React to this headline:

Strengthening defenses against nation-state and for-profit cyber attacks Read More »

How Google plans to make stolen session cookies worthless for attackers

authentication, Chrome, cookies, Don't miss, Hot stuff, Malware, MFA, News, Privacy, public-key cryptography / SecurityTicks

How Google plans to make stolen session cookies worthless for attackers 2024-04-03 at 08:31 By Zeljka Zorz Google is working on a new security feature for Chrome called Device Bound Session Credentials (DBSC), meant to prevent attackers from using stolen session cookies to gain access user accounts. Session (i.e., authentication) cookies are stored by browsers

React to this headline:

How Google plans to make stolen session cookies worthless for attackers Read More »

Out with the old and in with the improved: MFA needs a revamp

Acronis, authentication, cybercriminals, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, human error, MFA, News, opinion, phishing, zero trust / SecurityTicks

Out with the old and in with the improved: MFA needs a revamp 2024-01-19 at 08:02 By Help Net Security From AI to ZTA (zero-trust architecture), the technology responsible for protecting your company’s data has evolved immensely. Despite the advances, cybercriminals repeatedly find new and creative ways to gain access to sensitive information. This can

React to this headline:

Out with the old and in with the improved: MFA needs a revamp Read More »

SEC’s X account hacked to post fake news of Bitcoin ETF approval

account hijacking, account protection, Don't miss, Fake News, MFA, News, scams, Twitter / SecurityTicks

SEC’s X account hacked to post fake news of Bitcoin ETF approval 2024-01-10 at 15:47 By Zeljka Zorz Someone has hijacked the X (formerly Twitter) account of the US Securities and Exchange Commission (SEC), and posted an announcement saying the agency has decided to allow the listing of Bitcoin ETFs (exchange-traded funds) on registered national

React to this headline:

SEC’s X account hacked to post fake news of Bitcoin ETF approval Read More »

Breaking down the state of authentication

authentication, Axiad, cyberattack, cybersecurity, Don't miss, Hot stuff, MFA, passwordless, passwords, phishing, strategy, Video / SecurityTicks

Breaking down the state of authentication 2024-01-05 at 07:02 By Help Net Security In this Help Net Security video, Bassam Al-Khalidi, co-CEO of Axiad, discusses the results of Axiad’s recent State of Authentication Survey. Key findings from the survey revealed: – 39% indicated phishing is the most feared cyberattack, while 49% said it is the

React to this headline:

Breaking down the state of authentication Read More »

Why you need to extend enterprise IT security to the mainframe

access management, authentication, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, identity management, mainframe security, MFA, News, OpenText, opinion, standards / SecurityTicks

Why you need to extend enterprise IT security to the mainframe 2023-12-29 at 07:32 By Help Net Security Organizations with mainframes face a unique challenge: extending consistency across the entire enterprise, including mainframe environments. The ongoing issue lies in the incompatibility of tools designed for both mainframes and enterprise settings, resulting in disparate solutions, training

React to this headline:

Why you need to extend enterprise IT security to the mainframe Read More »

3 main tactics attackers use to bypass MFA

authentication, cybercrime, cybersecurity, MFA, News, report, SE Labs, survey / SecurityTicks

3 main tactics attackers use to bypass MFA 2023-12-26 at 07:09 By Help Net Security Notable security breaches have bypassed MFA to compromise taxi broker Uber, games company EA, and authentication business Okta, according to SE Labs. CISOs must bolster MFA protections SE Labs advised CISOs to step-up their efforts against attacks on systems protected

React to this headline:

3 main tactics attackers use to bypass MFA Read More »

How passkeys are reshaping user security and convenience

1Password, authentication, CISO, cybersecurity, Don't miss, Features, Hot stuff, MFA, News, opinion, passwordless, passwords, strategy, tips / SecurityTicks

How passkeys are reshaping user security and convenience 28/11/2023 at 08:34 By Mirko Zorz In this Help Net Security interview, Anna Pobletts, Head of Passwordless at 1Password, talks about passkey adoption and its acceleration in 2024. This trend is particularly notable among highly-regulated services like fintech and banking, where users seek a sign-in experience that

React to this headline:

How passkeys are reshaping user security and convenience Read More »

MFA under fire, attackers undermine trust in security measures

attacks, cybersecurity, Don't miss, Hot stuff, Infoblox, MFA, phishing, Video / SecurityTicks

MFA under fire, attackers undermine trust in security measures 20/11/2023 at 08:31 By Help Net Security In this Help Net Security video, Renée Burton, Head of Threat Intelligence at Infoblox, discusses MFA attacks. MFA adds security to online accounts, but MFA lookalikes are a real threat to consumers and enterprises. Consumers have come to trust

React to this headline:

MFA under fire, attackers undermine trust in security measures Read More »

Microsoft Authenticator suppresses suspicious MFA notifications

account hijacking, Don't miss, Hot stuff, MFA, Microsoft, News, social engineering / SecurityTicks

Microsoft Authenticator suppresses suspicious MFA notifications 08/11/2023 at 17:46 By Helga Labus Microsoft has quietly rolled out a new mechanism that shields users of its mobile Authenticator app from suspicious (and annoying) push notifications triggered by attackers. Preventing attacks relying on MFA fatigue When faced with MFA-protected accounts, threat actors repeatedly try to gain access

React to this headline:

Microsoft Authenticator suppresses suspicious MFA notifications Read More »

Microsoft introduces new access policies in Entra to boost MFA usage

access management, Don't miss, enterprise, Hot stuff, identity protection, MFA, Microsoft, Microsoft Entra ID, News, policy / SecurityTicks

Microsoft introduces new access policies in Entra to boost MFA usage 07/11/2023 at 18:17 By Helga Labus As part of a broader initiative to strengthen security, Microsoft is rolling out Microsoft-managed Conditional Access policies in Entra ID (formerly Azure Active Directory) to increase the use of multifactor authentication (MFA) for enterprise accounts. Microsoft Entra Conditional

React to this headline:

Microsoft introduces new access policies in Entra to boost MFA usage Read More »

How global password practices are changing

authentication, CISO, credentials, cybersecurity, Dashlane, Don't miss, MFA, News, password manager, passwords, report / SecurityTicks

How global password practices are changing 06/11/2023 at 09:33 By Help Net Security Password health and hygiene improved globally over the past year, reducing the risk of account takeover for consumers and businesses, according to Dashlane. Password reuse remains prevalent, however, leaving user accounts particularly vulnerable to password-spraying attacks if they’re not protected by strong

React to this headline:

How global password practices are changing Read More »

A closer look at healthcare’s battle with AI-driven attacks

access control, Artificial Intelligence, attacks, authentication, biometrics, cybercrime, cybersecurity, data breach, deepfakes, Don't miss, FBI, Features, fraud, healthcare, Hot stuff, medical devices, MFA, Moss Adams, News, opinion, Privacy, Ransomware / SecurityTicks

A closer look at healthcare’s battle with AI-driven attacks 31/10/2023 at 08:02 By Mirko Zorz With its wealth of sensitive patient data, the healthcare industry has become a prime target for cybercriminals leveraging AI tools. As these threats continue to evolve, it’s important to understand how AI is shaping the cybercrime landscape in healthcare and

React to this headline:

A closer look at healthcare’s battle with AI-driven attacks Read More »

Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft

cybercrime, Identity & Access, MFA, Scattered Spider, SIM swapping, Tracking & Law Enforcement / SecurityTicks

Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft 30/10/2023 at 18:46 By Ionut Arghire A 20-year-old Floridian was sentenced to prison for his role in a hacking scheme that led to the theft of $1 million in cryptocurrency. The post Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft appeared first on SecurityWeek. This

React to this headline:

Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft Read More »

Finding the right approach to security awareness

Artificial Intelligence, cybersecurity, Don't miss, Email, Hot stuff, Malware, Mark43, MFA, phishing, privileged accounts, security awareness, training, Video / SecurityTicks

Finding the right approach to security awareness 30/10/2023 at 09:02 By Help Net Security As artificial intelligence amplifies the sophistication and reach of phishing, vishing, and smishing attacks, understanding and managing human cyber risks has become increasingly vital. Security awareness training is essential and must be a live, evolving process. In this Help Net Security

React to this headline:

Finding the right approach to security awareness Read More »

How passkeys are changing the face of authentication

1Kosmos, authentication, credentials, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, MFA, News, opinion, passwordless / SecurityTicks

How passkeys are changing the face of authentication 23/10/2023 at 08:05 By Help Net Security As passwordless identity becomes mainstream, the term “passkey” is quickly becoming a new buzzword in cybersecurity. But what exactly is a passkey and why do we need them? A passkey is a digital credential that can only be used by

React to this headline:

How passkeys are changing the face of authentication Read More »

The real impact of the cybersecurity poverty line on small organizations

Afni, CISO, cybersecurity, Don't miss, Features, framework, Hot stuff, MFA, News, opinion, policy, resilience, risk, risk assessment, strategy, threats / SecurityTicks

The real impact of the cybersecurity poverty line on small organizations 20/10/2023 at 07:03 By Mirko Zorz The financial constraints many smaller organizations face often cast shadows on their ability to fortify defenses. In this Help Net Security interview, Brent Deterding, CISO at Afni, delves into the realities and myths surrounding the cybersecurity poverty line,

React to this headline:

The real impact of the cybersecurity poverty line on small organizations Read More »

Valve introduces SMS-based confirmation to prevent malicious games on Steam

authentication, Don't miss, ESET, Hot stuff, MFA, News, security update, software development, Steam / SecurityTicks

Valve introduces SMS-based confirmation to prevent malicious games on Steam 17/10/2023 at 16:32 By Helga Labus Video game publisher/digital distribution company Valve is forcing developers who publish games on its Steam platform to “validate” new builds with a confirmation code received via SMS. The Steam SMS confirmation requirement Valve sent out notices last month to

React to this headline:

Valve introduces SMS-based confirmation to prevent malicious games on Steam Read More »

Anticipating the benefits of a passwordless tomorrow

authentication, cybersecurity, FIDO Alliance, LastPass, MFA, News, password manager, passwordless, passwords, report, shadow IT, survey / SecurityTicks

Anticipating the benefits of a passwordless tomorrow 17/10/2023 at 06:02 By Help Net Security Businesses are actively moving to eradicate passwords from employees’ lives, with 89% of IT leaders expecting passwords to represent less than a quarter of their organization’s logins within five years or less, according to a FIDO Alliance and LastPass report. Moving

React to this headline:

Anticipating the benefits of a passwordless tomorrow Read More »

Keeping up with the demands of the cyber insurance market

cyber insurance, cybersecurity, data security, Delinea, Don't miss, Expert analysis, Expert corner, Hot stuff, market, MFA, News, opinion, Ransomware, remediation, standards, strategy, threats / SecurityTicks

Keeping up with the demands of the cyber insurance market 12/10/2023 at 08:01 By Help Net Security Cyber insurance has been around longer than most of us think. When American International Group (AIG) launched the first cyber insurance policy in 1997, it stepped into completely unknown territory to gain market share. Now, 26 years later,

React to this headline:

Keeping up with the demands of the cyber insurance market Read More »