Multifactor Authentication (MFA) – Page 3

Does Multifactor Authentication Keep Your Remote Workers Safe?

Posted on May 5, 2021 by Jennifer Gregory

Your eight-character password can be cracked in about eight hours, using brute force attacks — even if you add in numbers, mix up the cases and throw in a special character or three. Odds are high that eight-hour window will soon be even shorter. To combat this, many companies added multifactor authentication (MFA) into their […]

The post Does Multifactor Authentication Keep Your Remote Workers Safe? appeared first on Security Intelligence.

Continue reading Does Multifactor Authentication Keep Your Remote Workers Safe?→

Adopting Microsegmentation Into Your Zero Trust Model, Part 2

Posted on May 4, 2021 by Jennifer Gregory

This is the second part in a series on zero trust and microsegmentation. Be sure to check out Part 1 here. Organizations are increasingly using a zero trust approach combined with microsegmentation to carefully balance the needs of security and access. Companies work with most vendors on a purely transactional basis — those vendors simply […]

The post Adopting Microsegmentation Into Your Zero Trust Model, Part 2 appeared first on Security Intelligence.

Continue reading Adopting Microsegmentation Into Your Zero Trust Model, Part 2→

Is Multifactor Authentication Changing the Threat Landscape?

Posted on April 29, 2021 by Camille Singleton

Changes to the cybersecurity threat landscape are constant and dynamic: threat actor groups come and go, alter tactics, techniques and procedures (TTPs) and adjust to new defensive mechanisms. Over time, both cyber criminal gangs and nation-state actors endure arrests and swap individuals in what can appear to be an ongoing arms race between good and […]

The post Is Multifactor Authentication Changing the Threat Landscape? appeared first on Security Intelligence.

Continue reading Is Multifactor Authentication Changing the Threat Landscape?→

Progressive Web Apps and Cookies: Taking a Bite Out of Security

Posted on April 20, 2021 by Douglas Bonderud

To prevent cookie theft, have cyber defense baked in. With progressive web apps (PWA) and other relatively new protective efforts in place, how can you be sure you’re defending against today’s attackers? Here’s what enterprise needs to know about the rumbling threat of pass-the-cookie attacks, how current cloud and mobile frameworks like PWAs can empower […]

The post Progressive Web Apps and Cookies: Taking a Bite Out of Security appeared first on Security Intelligence.

Continue reading Progressive Web Apps and Cookies: Taking a Bite Out of Security→

Why Business Password Management Remains a Struggle

Posted on April 19, 2021 by Sue Poremba

How secure is your password? Everyone has a favorite. Savvy people, of course, know better than to use something that can be easily guessed, like 12345 or ‘Password.’ But, once you latch on to a password you really like and is easy to remember, you use it again on a site you might not visit […]

The post Why Business Password Management Remains a Struggle appeared first on Security Intelligence.

Continue reading Why Business Password Management Remains a Struggle→

Cookie Hijacking: More Dangerous Than it Sounds

Posted on April 5, 2021 by Mark Stone

Multifactor authentication (MFA) is a great way to prevent threat actors from using stolen credentials to access your network. But with remote work becoming the norm and the attack surface widening with more apps, devices and systems connecting than ever before, threat actors are working overtime to beat MFA. Cookie hijacking in particular is a […]

The post Cookie Hijacking: More Dangerous Than it Sounds appeared first on Security Intelligence.

Continue reading Cookie Hijacking: More Dangerous Than it Sounds→

Beyond Text Messages: How to Secure 2FA Against Phone Authentication Scams

Posted on February 12, 2021 by David Bisson

If you or your employees access protected information with authentication codes sent to a cell phone, you might want to rethink your plan. Two-factor authentication (2FA) using text messages can fall prey to phone authentication scams. That’s not to say 2FA itself is a problem. You should keep using it, and many groups have turned […]

The post Beyond Text Messages: How to Secure 2FA Against Phone Authentication Scams appeared first on Security Intelligence.

Continue reading Beyond Text Messages: How to Secure 2FA Against Phone Authentication Scams→

Cloud IAM and the Path Toward Digital Transformation

Posted on August 7, 2020 by Swati Tewari

By 2022, 40% of global midsize and larger organizations will use identity and access management (IAM) capabilities delivered as software-as-a-service (SaaS) to fulfill most of their needs, cites a 2019 Gartner press release on IAM technology trends. Today, businesses are aligning themselves with a digital ecosystem by moving toward cloud adoption. On the journey toward […]

The post Cloud IAM and the Path Toward Digital Transformation appeared first on Security Intelligence.

Continue reading Cloud IAM and the Path Toward Digital Transformation→

New Research Exposes Iranian Threat Group Operations

Posted on July 16, 2020 by Allison Wikoff

IBM X-Force Incident Response Intelligence Services (IRIS) has uncovered rare details on the operations of the suspected Iranian threat group ITG18, which overlaps with Charming Kitten and Phosphorous. In the past few weeks, ITG18 has been associated with targeting of pharmaceutical companies and the U.S. presidential campaigns. Now, due to operational errors—a basic misconfiguration—by suspected […]

The post New Research Exposes Iranian Threat Group Operations appeared first on Security Intelligence.

Continue reading New Research Exposes Iranian Threat Group Operations→