Collaborate Disseminate
In the news, Duo Security launches media site, SolarWinds Democratizes Network Path Analysis with Release of Traceroute NG Free Tool, Martin Shkreli has to forfeit the Wu-Tang album because justice is sweet, and more on this episode of Enterprise Secur… Continue reading AlgoSec, SolarWinds, & Martin Shkreli – Enterprise Security Weekly #82
20 years ago, everyone worked at a desktop workstation hardwired into an office building. This made network security simple and organizations felt they could depend on the time-tested method of the trusted perimeter. Firewalls were relied on to keep ou… Continue reading Why do we need a risk-based approach to authentication?
Most Americans have never heard of two-factor authentication, even as the world’s biggest tech companies are pushing increasingly strong versions of multi-factor authentication in hopes of solving a vast array of cybersecurity problems. According to a new survey from Duo Security, only 28 percent of Americans use two-factor authentication and over 56 percent never heard of the technology before the survey. Just over half (54 percent) of Americans using two-factor authentication began doing so voluntarily. About 45 percent of respondents began because they were forced or incentivized to do so. There may be some good news hidden in these numbers. Of the people who have turned on two-factor authentication, only about 1 percent ended up turning it off. Every one of them cited inconvenience as the reason. Two-factor authentication is a way for people to prove their identity in two ways using something they know (like a password) and something they have (like their phone or a security key). […]
The post Most Americans have never heard of multi-factor authentication appeared first on Cyberscoop.
Continue reading Most Americans have never heard of multi-factor authentication
Most phishing sites are quickly detected and access to them is blocked, but not matter how fast the “takedown” happens, the number of victims is still large enough to make the phishers’ effort worthwhile. That’s because the required effort is often minimal: access to compromised sites can be relatively cheaply bought (or phished), access to email accounts used to send out phishing mail is easy (new or compromised through phishing), and phishing kits are pretty … More → Continue reading Researchers analyze 3,200 unique phishing kits
Ten sales rules you should break, how to pitch a venture capitalist, guiding employees towards mental health, and updates from Duo Security, Contrast Security, and more startup news! Article Discussion on Leadership, Innovation, and Startup Success Decision-Making Auditing ==> Top 10 Sales Rules You Should Break ==> Is B2B Marketing and Sales Messaging Improving? ==> Guiding Employees Toward […]
The post Article Discussion on Leadership, Innovation, and Startup Success – Startup Security Weekly #60 appeared first on Security Weekly.
Wendy Nather is Principal Security Strategist at Duo Security. Wendy is also a good friend of the Security Weekly team! She speaks regularly on topics ranging from threat intelligence to identity and access management, risk analysis, incident response, data security, and societal and privacy issues. Full Show Notes Subscribe to YouTube Channel
The post Wendy Nather, Duo Security – Paul’s Security Weekly #534 appeared first on Security Weekly.
Continue reading Wendy Nather, Duo Security – Paul’s Security Weekly #534
The internet isn’t ready for DNS sec, Netgear patches away, Whole Foods is the latest victim of a credit card breach, and more. Ferruh Mavituna and Sven Morgenroth of Netsparker join us to discuss Apache Struts vulnerability and the Equifax breach on this episode of Hack Naked News! News ICANN Postpones Scheduled DNS Crypto Key […]
The post ICANN, Duo Security, iPhone Hacking, and Whole Foods – Hack Naked News #143 appeared first on Security Weekly.
Continue reading ICANN, Duo Security, iPhone Hacking, and Whole Foods – Hack Naked News #143
Mac users who have updated to the latest OS version or have downloaded and implemented the most recent security update may not be as secure as they originally thought, Duo Security researchers have found. That’s because many of them did not receive the newest firmware along with OS and software updates. Why is keeping your firmware up-to-date important? EFI firmware (Intel’s implementation of the Unified Extensible Firmware Interface – UEFI) is present on all Macs. … More → Continue reading Is your Mac software secure but firmware vulnerable?
Researchers at Duo Security are expected today at Ekoparty to reveal data and a paper that shows Mac users are not receiving EFI firmware updates at expected. Continue reading Macs Not Receiving EFI Firmware Security Updates as Expected
A dump of over 550 million username and password combinations is currently being sold on underground forums, and eager crooks are paying for the privilege to test them out against many online services. Their hope is that some of these combinations will work and they will be able to hijack and misuse legitimate accounts. That hope is not in vain: it is a well known fact of life that too many users reuse the same … More → Continue reading Analysis of 500 million passwords shows what you should avoid