Twitter users no longer have to supply a phone number in order to use two-step verification for authentication. The move will better protect accounts from SIM hijacking attempts and also means users don't have to sacrifice some of their privacy to enable a security feature.
U.S. Senator Ron Wyden is pushing the Federal Communications Commission to ensure that wireless carriers build new security measures, such as encryption and authentication, into 5G networks as they're rolled out over the next several years.
The latest edition of the ISMG Security Report offers an in-depth analysis of how to prevent data exposure in the cloud. Plus: why PCI's new contactless payment standard lacks PINs, and how to go beyond the hype to accurately define "zero trust."
Identity attacks such as phishing, credential stuffing, and brute-force-attacks are increasingly common and sophisticated methods for committing account takeovers. These attacks result in increased security risks, brand damage, and outright fraud.
Download this whitepaper to learn how to keep attackers at bay...
IT teams want to provision their workforces to cloud and on-prem apps with ease while avoiding unnecessary manual work. Employees want to move past the frustration of individual daily sign-ons. What's needed is a single solution that simultaneously automates provisioning for IT teams while simplifying sign-ins for...
What is a "reasonable" response to a cyber incident? Following a recent roundtable dinner discussion of the topic, Jonathan Nguyen-Duy of Fortinet discusses getting cyber right.
Nation-state attackers have been targeting known flaws that customers have yet to patch in their Pulse Secure, Palo Alto and Fortinet VPN servers, Britain's National Cyber Security Center warns, adding that any organization that didn't immediately apply patches should review logs for signs of hacking.
Users are often lax about their own passwords to the dismay of many employers and organizations they transact with. Strong authentication is critical and organizations must be careful about security measures for their online customer transaction accounts - but when users become too frustrated during the login process...
The sheer number and destructive nature of recent data breaches is both alarming and discouraging - but there's still cause to be hopeful. Nearly three-quarters of these attacks were due to the same vulnerability: weak or stolen credentials.
Download this white paper to learn:
What are strong authentication...
The unrelenting tide of data breach and compliance challenges continues to plague an increasingly mobile workforce and business models. This has caused a dynamic transformation in the way employees, partners, contractors, and visitors are authenticated.
Download this white paper to learn more about:
The move...
All enterprises need to grant their employees access to the right digital and physical resources. They also need to digitize their businesses, protect their data, and comply with various local and global regulations.
Nexus helps resolve these identity challenges that most enterprises face, regardless of the...
With widespread use of Active Directory across industries and organizations of all sizes, it is frequently a target for bad actors who can use a cracking dictionary or exposed credentials to gain unauthorized access to an employee's account.
Multifactor authentication remains an industry best practice
for preventing unauthorized account access.
Download this report to learn more about:
The state of MFA and password security;
What your company needs to know about best practices for MFA
Improving your company's cyber hygiene.
Following racist and anti-Semitic tweets being posted for a short time to Twitter CEO Jack Dorsey's hijacked account - despite his use of two-factor authentication - Twitter blamed the security lapse on an unnamed mobile provider. A group called "Chuckling Squad" appears to be responsible.
Every industry is vulnerable to breaches - and more often than not, weak or stolen passwords are the culprit of confirmed data breaches. That shows that many attacks are relying on tried-and-true methods, but that isn't necessarily a good thing. Despite the growing capacity to detect known threats, user credentialing...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.
