Category: Access control

Access control, Security

Risky development practice leaves company access keys exposed

September 15, 2020

Via: Computer Weekly

Company access keys, used by developers to authenticate into other systems, are all too frequently being left exposed to the public during the software development process, putting company data at risk of being compromised by malicious actors on the lookout […]

Access control, Security

Secure Your Zoom Account with Two-Factor Authentication

September 11, 2020

Via: Hot for Security

2FA makes Zoom video-conferencing accounts harder for hackers to compromise Users given option of app-based or SMS-based 2FA Admins can set 2FA policy for different user groups We’ve said it once, we’ve said it twice, we’ve said it one hundred […]

Access control, Security

Is now the time to deploy passwordless options?

August 25, 2020

Via: CSO Online

Over the past several years, experts have recognized that perhaps the best password strategy for your application logins is to have no password at all, what has been often labeled as “passwordless.” It is a bit of a misnomer, as […]

Access control, Cloud security, Security

Attackers exploit Twilio’s misconfigured cloud storage, inject malicious code into SDK

July 23, 2020

Via: Help Net Security

Twilio has confirmed that, for 8 or so hours on July 19, a malicious version of their TaskRouter JS SDK was being served from their one of their AWS S3 buckets. “Due to a misconfiguration in the S3 bucket that […]

Access control, Data loss, Security, Threats & Malware

15 Billion Credentials Currently Up for Grabs on Hacker Forums

July 8, 2020

Via: Threat Post

Fifteen billion usernames and passwords for a range of internet services are currently for sale on underground forums – shedding light on the sheer scope of compromised credentials that are fueling account takeovers on the internet. A report released Wednesday […]

Access control, Security

Rethinking Enterprise Access, Post-COVID-19

June 24, 2020

Via: Dark Reading

As we look to reopen the economy, a lot of muscle memory will have to be relearned. The old way of doing things isn’t going to make it in the post-COVID-19 world. Too much is on the line, for both […]

Access control, Cyber-crime, Identity theft, Security

Microsoft Boosts Protections for US AccountGuard Users

June 22, 2020

Via: Security Week

Part of Microsoft’s Defending Democracy Program, AccountGuard was introduced in 2018 to “protect organizations that underpin democracy from cyberattacks.” Initially available to candidates for federal, state and local office in the United States and their campaigns, the service has since […]

Access control, Network security, Security

Banking on Data Security in a Time of Insecurity

June 2, 2020

Via: Dark Reading

CIOs at financial institutions have a lot to think about every day. Fraud. Data breaches. Integrating IT systems after a merger. It’s a tough job, and it’s one that usually goes unnoticed unless there’s a problem. But one thing that […]

Access control, Security

Identification and access management: some possible futures

May 22, 2020

Via: Computer Weekly

The demise of the password has been picking up speed since Bill Gates sounded its death-knell in 2004. While famed as one of the oldest security tools in the world of software and the internet, passwords are increasingly letting users […]

Access control, Cyber-crime, Identity theft, Security

How Chatbots Can Help Bridge Business Continuity and Cybersecurity

May 15, 2020

Via: Security Intelligence

A quick web search for “chatbots and security” brings up results warning you about the security risks of using these virtual agents. Dig a little deeper, however, and you’ll find that this artificial intelligence (AI) technology could actually help address […]