Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Researchers discovered several vulnerabilities in Double telepresence robots. Flaws patched with server-side fix [Read More]
Schneider Electric patches serious vulnerabilities in Wonderware Intelligence and ClearSCADA products [Read More]
Researchers found several potentially serious flaws in a popular pricing software from Navetti. Patches are available [Read More]
Researcher discloses backdoor affecting video recorders and IP cameras from Dahua. The vendor has started releasing firmware updates [Read More]
Twitter patched a vulnerability that allowed hackers to bypass the locked account protection mechanism [Read More]
Trustwave researchers find backdoor account in GoIP GSM gateways from Hong Kong-based DBL Technology [Read More]
It only took Slack developers five hours to patch a vulnerability that could have been exploited to hijack accounts [Read More]
Researchers analyzed several popular Android password managers and found that they fail to properly protect user credentials [Read More]
Google and CWI announced the first SHA-1 collision, creating two PDFs with different content but identical hashes [Read More]
Researchers warn about the threat posed by logic bombs to industrial control systems (ICS), particularly programmable logic controllers (PLCs) [Read More]

FEATURES, INSIGHTS // Identity & Access

rss icon

David Holmes's picture
What are the possible threat vectors if you were doing a threat model assessment for any of cloud passwords management models?
Rafal Los's picture
If you’re tired of changing your passwords using complex formulas you’ll never remember and have found yourself wondering just what your corporate security team is thinking, this post is for you.
David Holmes's picture
Password proliferation is bad, for many, many, many reasons. But the worst reason is that people tend to re-use passwords all over the place.
Travis Greene's picture
Two-factor authentication (2FA) is becoming more mainstream for businesses; however, businesses need to consider how 2FA should be implemented to maintain both external and internal control.
Travis Greene's picture
As the demand for identity governance in Asian companies grows, the key differentiator is that it’s going to come from a need to reduce risk.
Travis Greene's picture
While Identity and access management (IAM) is a mature discipline supporting internal employee access to applications, what is the future of IAM in support of end customer interactions?
Travis Greene's picture
Like all security measures, MFA is not an instant fix to safeguard credentials. But, understanding the risks of MFA limitations is the first step towards mitigation.
Travis Greene's picture
Passwords really are that bad, and we now have another mandate to address this ongoing issue, or, the so-called elephant in the room: The growing push for multi-factor authentication.
Travis Greene's picture
When big stories like the release of the Panama Papers breaks, it is an opportunity to self-evaluate what level of risk your organization could be exposed to.
Rafal Los's picture
Attackers are exploiting issues in corporate identity stores with greater frequency. If you doubt the danger that identities pose to your organization, you should conduct a simple test.