Collaborate Disseminate
Reddit.com today disclosed that a data breach exposed some internal data, as well as email addresses and passwords for some Reddit users. As Web site breaches go, this one doesn’t seem too severe. What’s interesting about the incident is that it showca… Continue reading Reddit Breach Highlights Limits of SMS-Based Authentication
Google today announced it is launching its own hardware security keys for two-factor authentication. These so-called Titan Security Keys will go up against similar keys from companies like Yubico, which Google has long championed as the de facto standard for hardware-based two-factor authentication for Gmail and other services. The FIDO-compatible Titan keys will come in […] Continue reading Google takes on Yubico and builds its own hardware security keys
Google says its workforce has been phish-proof for more than a year. The impressive security stat is due to small USB security keys issued to all 85,000 of the company’s employees. Companies that produce these small pieces of hardware, like Yubico, have seen tremendous growth over the last two years thanks to rapidly accelerating adoption — but they will now have fresh competition. Google will soon start widely selling its own Titan Security Key, which includes firmware developed by the omnipresent tech giant itself. The product is available now to Google Cloud customers and will eventually be available to general customers, the company announced Wednesday at its Google Cloud Next conference in San Francisco. Like similar keys from other companies, it will provide a second authentication factor for software use, network access, account management and other services. When the hardware is linked to an account, a password isn’t enough — the user must plug in the […]
The post Security keys have been good to Google, so now it’s promoting one of its own appeared first on Cyberscoop.
Continue reading Security keys have been good to Google, so now it’s promoting one of its own
Twitter has added the ability to authenticate to the service using hardware tokens such as Yubico’s YubiKey. Continue reading Twitter introduces another way for you to better secure your account
In the Security News this week, shutting down the Internet to prevent cheating, Yubico claims a bug bounty and upsets researchers, patching MRI scanners, getting your money back after being scammed, and a couple is caught selling golden tickets to heav… Continue reading Golden Tickets, 911 Callers, and Hacking Therapy – Paul’s Security Weekly #565
Yubico announced the certification and availability of the YubiKey FIPS Series, a product line that meets cryptographic security requirements of the Federal Information Processing Standard (FIPS) 140-2. FIPS 140-2 is a US government computer security s… Continue reading Yubico launches FIPS 140-2 validated YubiKey series
Yubico has been drawn into a rare public spat over how the discovery of a security flaw affecting it products was credited. Continue reading Researchers claim Chrome bug bounty paid to the wrong people
Cybersecurity hardware company Yubico has had a year marked by new investment, new tech and big customers including Google and Facebook. But the most frequent customer question has remained: Can I use this thing with my damn iPhone? The answer is now “yes.” Yubico announced on Tuesday a new YubiKey software development kit for iOS, allowing app developers to integrate the hardware key’s near field communication (NFC) authentication into their apps. That is, the small device doesn’t have to touch the phone to help authenticate a user, as it does with personal computers. The first iOS app to offer YubiKey support is popular multiplatform password manager LastPass. The process works with a YubiKey NEO model, which has NFC built in. CyberScoop used a beta version prior to the company’s announcement and found it to be as straightforward as plugging a YubiKey into a laptop or using it via NFC with an Android device. The company, which is based in both California and […]
The post YubiKey arrives on iOS appeared first on Cyberscoop.
To push two-factor authentication into the future, one expert says we need to look back 50 years. The way to increase adoption of the security practice is to mimic the rise of seat belts in automobiles, says Yubico CEO Stina Ehrensvard. People must evolve in their thinking about sensitive accounts and personal data in the same way that society expanded its awareness of the need for auto safety, Ehrensvard says. “In the ’50s, there were 10 times less cars, but more fatal accidents,” Ehrensvard said during a panel at SF CyberTalks presented by CyberScoop. “We put out the car without the seat belts, without the crumple zones, without the airbags, and now they are standard features in cars. Because of that work, the car is safer.” One thing that consumers probably don’t want to mimic: The timespan it took for safety belts to become a fact of life. They were introduced in the 1950s, but were not required by […]
The post Yubico CEO: Two-factor authentication should mirror seat belt’s history appeared first on Cyberscoop.
Continue reading Yubico CEO: Two-factor authentication should mirror seat belt’s history
Yubico announced that the new Security Key by Yubico supporting FIDO2 will be supported in Windows 10 devices and Microsoft Azure Active Directory (Azure AD). The feature is currently in limited preview for Microsoft Technology Adoption Program (TAP) c… Continue reading Passwordless enterprise authentication on Windows 10 and Azure AD