Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
GitHub tells some users to reset their passwords after a bug caused internal logs to record passwords in plaintext [Read More]
Microsoft unveils Trusted Cyber Physical Systems (TCPS), a new solution designed to protect critical infrastructure and other industrial systems against cyber threats [Read More]
Mozilla informs users that the upcoming Firefox 60 will introduce support for the same-site cookie attribute to protect against CSRF attacks [Read More]
Researchers claim hackers can remotely exploit an unpatched command injection vulnerability to take control of LG NAS devices [Read More]
Google this week announced that iOS users can now receive Google prompts via their Gmail application. [Read More]
Vast majority of the exhibitors at the RSA Conference have not implemented DMARC on their primary domains, opening the door to fraudulent and fake emails [Read More]
Cisco Talos researchers find 17 vulnerabilities in Moxa industrial routers, including many high severity command injection and DoS flaws [Read More]
Web browsers from Google, Microsoft, and Mozilla will soon provide users with a new, passwordless authentication standard that is currently in final approval stages [Read More]
SirenJack attack allows hackers to remotely activate warning sirens such as the ones used by major cities, military facilities, universities, and industrial sites [Read More]
Hackers protest election-related cyberattacks by hijacking many Cisco switches in Iran and Russia - but do the attacks involve the recently disclosed CVE-2018-0171 vulnerability? [Read More]
FEATURES, INSIGHTS // Identity & Access
What are the possible threat vectors if you were doing a threat model assessment for any of cloud passwords management models?
If you’re tired of changing your passwords using complex formulas you’ll never remember and have found yourself wondering just what your corporate security team is thinking, this post is for you.
Password proliferation is bad, for many, many, many reasons. But the worst reason is that people tend to re-use passwords all over the place.
Two-factor authentication (2FA) is becoming more mainstream for businesses; however, businesses need to consider how 2FA should be implemented to maintain both external and internal control.
As the demand for identity governance in Asian companies grows, the key differentiator is that it’s going to come from a need to reduce risk.
While Identity and access management (IAM) is a mature discipline supporting internal employee access to applications, what is the future of IAM in support of end customer interactions?
Like all security measures, MFA is not an instant fix to safeguard credentials. But, understanding the risks of MFA limitations is the first step towards mitigation.
Passwords really are that bad, and we now have another mandate to address this ongoing issue, or, the so-called elephant in the room: The growing push for multi-factor authentication.
When big stories like the release of the Panama Papers breaks, it is an opportunity to self-evaluate what level of risk your organization could be exposed to.
Attackers are exploiting issues in corporate identity stores with greater frequency. If you doubt the danger that identities pose to your organization, you should conduct a simple test.
SecurityWeek Daily Briefing
- Compromised GitHub Account Spreads Malicious Syscoin Installers
- Cyber Attack Aims to Manipulate Mexican Election
- Critical Flaws Expose 400 Axis Cameras to Remote Attacks
- DHS, FBI Share Details of North Korea's 'Typeframe' Malware
- UK Email Threat Firm Tessian Secures $13 Million Series A Funding
- F-Secure Acquires MWR InfoSecurity for $106 Million
- China-Linked APT15 Develops New 'MirageFox' Malware
- Trump-Kim Summit Attracts Wave of Cyber-Attacks on Singapore
- India-based Network Intelligence Raises for $4.8 Million for Expansion
- New Campaign Possibly Linked to MuddyWater
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy