Top

Category: Access control


Access control, Security

Top passwords used in RDP brute-force attacks

November 17, 2022

Via: Help Net Security

Specops Software released a research analyzing the top passwords used in live attacks against Remote Desktop Protocol (RDP) ports. This analysis coincides with the latest addition of over 34 million compromised passwords to the Specops Breached Password Protection Service, which […]


Access control, Security

False sense of safety undermines good password hygiene

November 7, 2022

Via: Help Net Security

LastPass released findings from its fifth annual Psychology of Password report, which revealed even with cybersecurity education on the rise, password hygiene has not improved. Regardless of generational differences across Boomers, Millennials and Gen Z, the research shows a false […]


Access control, Security

Prove Auth empowers companies to reduce reliance on passwords and one-time passcodes

October 25, 2022

Via: Help Net Security

Prove Identity launches Prove Auth, a next-generation solution for passwordless login and omnichannel authentication. Prove Auth enables companies to reduce reliance on passwords and one-time passcodes (OTPs) and empowers consumers to frictionlessly authenticate in all channels including phones, desktops and […]


Access control, Security

Full password protection for half price with this NordPass Black Friday deal

October 19, 2022

Via: TechRadar

While digital technologies keep evolving, so do the threats you can face online. This is why you should consider getting yourself a diversified array of security tools to protect your most sensitive data. So, why not take advantage of this […]


Access control, Security

Purpose-based access control: Putting data access requests into context

October 10, 2022

Via: Net Security

Access control is the heart of data protection. Striking the right balance between easy access and tight security isn’t easy, but getting it right is how you maintain business agility while still meeting regulatory and fiduciary data protection responsibilities. Role-based […]


Access control, Security

Is mandatory password expiration helping or hurting your password security?

October 4, 2022

Via: Help Net Security

For decades cybersecurity professionals held tight to the idea that passwords needed to be changed on a regular basis. In recent years, however, organizations such as NIST and Microsoft have abandoned this longstanding best practice and are now recommending against […]


Access control, Security

Dashlane launches integrated passkey support for password manager with new in-browser passkey solution

September 1, 2022

Via: CSO Online

Password management vendor Dashlane has announced the introduction of integrated passkey support in its password manager, unveiling an in-browser passkey solution to help tackle the issue of stolen/misused passwords. The launch comes as the “passwordless authentication” era edges closer with […]


Access control, Security

Avast Ransomware Shield for businesses prevents unauthorised access

August 25, 2022

Via: Help Net Security

Avast has launched a Ransomware Shield for businesses, offering organizations an extra layer of protection against ransomware attacks. This will ensure businesses can secure their files and customer data, with proactive protection which prevents unauthorized access. The new feature is […]


Access control, Security

Hackers are stealing browser cookies to glide past MFA

August 19, 2022

Via: TechRadar

Multi-factor authentication is a great way to keep cybercriminals at bay, but some are apparently getting pretty good at bypassing this type of protection by stealing application and browser session cookies. Cybersecurity researchers from Sophos say they’re observing an increasing […]


Access control, Security

Overcoming the roadblocks to passwordless authentication

August 16, 2022

Via: Help Net Security

It’s a well-known fact that humans are the weakest link in any security strategy. Verizon’s latest annual data breach report found that over 80% of breaches in the “Basic Web Application Attacks” incident pattern were due to stolen credentials. Not […]


Access control, Security

Syxsense Zero Trust enables security teams to build access policies and remediation workflows

August 11, 2022

Via: Help Net Security

In Las Vegas, at Black Hat USA 2022, Syxsense announced Syxsense Zero Trust, a module within Syxsense Enterprise that enables endpoint compliance with Zero Trust Network Access policies (ZTNA). Zero Trust initiatives require focus on endpoint protection, but traditional authentication […]


Access control, Security

Apple outlines its plans to get rid of passwords for good

August 3, 2022

Via: TechRadar

Apple has revealed more details on its plans to try and remove passwords from our daily lives with its new Passkeys tool. Despite announcing Passkeys at WWDC 2022 in June, the company has left us craving more and more information […]


Access control, Application security, Security

Cato DLP secures and optimizes access to all applications

July 20, 2022

Via: Help Net Security

Cato DLP is part of Cato SSE 360, the only Security Service Edge (SSE) architecture to provide total visibility, optimization, and control of all traffic while providing a seamless migration path to full SASE transformation. Cato has also added Cato […]


Access control, Security

Popular business web apps fail to implement critical password requirements

July 20, 2022

Via: Help Net Security

Specops Software released new research finding cybersecurity weaknesses in business web apps including Shopify, Zendesk, Trello, and Stack Overflow. Amid a wave of cybersecurity incidents related to the COVID-19 pandemic, remote work, and nation-state activity, password security is more important […]


Access control, Cyber-crime, Malware, Security

Beware of password-cracking software for PLCs and HMIs!

July 18, 2022

Via: Help Net Security

A threat actor is targeting industrial engineers and operators with trojanized password-cracking software for programmable logic controllers (PLCs) and human-machine interfaces (HMIs), exploiting their pressing needs to turn industrial workstations into dangerous bots. According to Dragos researchers, the adversary seems […]


Access control, Security

Buggy ‘Log in With Google’ API Implementation Opens Crypto Wallets to Account Takeover

July 7, 2022

Via: Dark Reading

A cryptocurrency wallet service provider serving more than 2 million users worldwide and managing about $3 billion worth of Bitcoin was found to contain API vulnerabilities tied to how external authentication logins were implemented. The bugs are fixed, but the […]


Access control, Security

Rafay Systems Paralus helps users achieve secure access to Kubernetes clusters

June 30, 2022

Via: Help Net Security

Rafay Systems launched a new open-source software project named Paralus to enable secure, audited access for developers, operations, SREs and CI/CD tools to remote Kubernetes (K8s) clusters. Paralus offers access management for developers, architects, and CI/CD tools to remote K8s […]


Access control, Security

Solution to cybersecurity skills gap largely sits with hiring practices

June 21, 2022

Via: Help Net Security

(ISC)² published findings from its 2022 Cybersecurity Hiring Managers research that shed light on best practices for recruiting, hiring and onboarding entry- and junior-level cybersecurity practitioners. The research, reflecting the opinions of 1,250 cybersecurity hiring managers from the U.S., Canada, […]


Access control, Security

How much does access to corporate infrastructure cost?

June 15, 2022

Via: Securelist

Division of labor Money has been and remains the main motivator for cybercriminals. The most widespread techniques of monetizing cyberattacks include selling stolen databases, extortion (using ransomware) and carding. However, there is demand on the dark web not only for […]


Access control, Security

Apple unveils passkeys for passwordless authentication to apps and websites

June 7, 2022

Via: Help Net Security

At WWDC 2022, Apple has announced and previewed iOS 16 and iPad OS 16, macOS 13 (aka macOS Ventura), watchOS 9, their new M2 chips, new MacBook Air and Pro, as well as new tools, technologies, and APIs for developers […]