Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Private equity investment firm Thoma Bravo said it will acquire a majority interest in identity and access management (IAM) solutions firm Centrify. [Read More]
Hackers gained access to Timehop systems in December 2017, but the breach was only discovered on July 4. The incident affects 21 million users [Read More]
A recently detected Smoke Loader infection campaign is attempting to steal credentials from a broad range of applications, including web browsers, email clients, and more. [Read More]
Mozilla announces updated version of the Root Store Policy governing CAs trusted by its products [Read More]
Facebook notifies 800,000 users that people they had blocked were temporarily unblocked due to a bug. The company also detailed new API restrictions designed to protect user information [Read More]
Twitter has shared some details on new processes designed to prevent spam and malicious automation [Read More]
San Francisco, Calif (HQ) and Ramat Gan, Israel (R&D) threat prevention firm Preempt has raised $17.5 million in a Series B funding round. [Read More]
Identity management solutions provider Ping Identity acquires Elastic Beam and launches AI-based API security product [Read More]
DHS HART national biometric database will be useful to law enforcement, but experts are concerned about the civil liberties implications and securing access and use of the data [Read More]
Japanese electrical engineering company Yokogawa patches hardcoded credentials vulnerability affecting its STARDOM controllers [Read More]
FEATURES, INSIGHTS // Identity & Access
Even the most knowledgeable users — the very CISOs and security professionals who may be reading this article — can be duped into taking the bait.
By using best practices to protect credentials, while at the same time monitoring for leaked credentials and changes in the tools attackers use, you can mitigate the risk of account takeovers to your organization.
Having served aboard the USS Carl Vinson in the late 1990s, I can assure you that the World War II slogan, “loose lips sink ships” is still very much a part of Navy life.
Training employees to be aware of credential-based attacks and how to avoid them, as well as adopting the right prevention-based measures, can have a material impact on stopping a common and effective attack techniques.
What are the possible threat vectors if you were doing a threat model assessment for any of cloud passwords management models?
If you’re tired of changing your passwords using complex formulas you’ll never remember and have found yourself wondering just what your corporate security team is thinking, this post is for you.
Password proliferation is bad, for many, many, many reasons. But the worst reason is that people tend to re-use passwords all over the place.
Two-factor authentication (2FA) is becoming more mainstream for businesses; however, businesses need to consider how 2FA should be implemented to maintain both external and internal control.
As the demand for identity governance in Asian companies grows, the key differentiator is that it’s going to come from a need to reduce risk.
While Identity and access management (IAM) is a mature discipline supporting internal employee access to applications, what is the future of IAM in support of end customer interactions?
SecurityWeek Daily Briefing
- Mitigate Risk From Malicious and Accidental Insiders
- FBI Warns of Cyber-Thieves Targeting Payroll Accounts
- Japan Digital Currency Exchange Hacked, Losing $60 Million
- China Arrests Suspect for Customer Data Leak at Accor Partner
- Department of Defense Releases New Cyber Strategy
- Facebook Boosts Protections for Political Candidates
- Report Reveals Widespread Use of Pegasus Spyware
- Card Data-Scraping Magecart Code Found on Newegg
- Lawmaker: US Senate, Staff Targeted by State-Backed Hackers
- Adobe Patches Code Execution, Other Flaws in Acrobat and Reader
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy