Duo's Security Blog

APRIL 20, 2023

A major leading research and teaching institution, the University was looking for a multi-factor authentication (MFA) solution that could integrate with existing IT architecture and be rolled out easily across campus. The University of Queensland turned to Duo to protect 50,000 students and over 7,500 staff.

Phishing 106

Phishing Social Engineering Authentication Engineering 106

Thales Cloud Protection & Licensing

NOVEMBER 14, 2018

Because IoT devices typically have limited CPU and storage capabilities, many devices transmit data in the clear and with limited authentication capabilities to a central collection unit where it can be collected, stored, analyzed and securely transmitted for additional use. For more information on this topic, please visit Venafi.

IoT 85

IoT Authentication Manufacturing Digital transformation 85

Duo's Security Blog

JULY 25, 2024

ITDR evaluates risk by analyzing existing identity providers, human resources information systems and other enterprise apps simultaneously while detecting risk with policies, permissions, user authentication logs, security events and additional third-party telemetry. Curious about your identity security hygiene?

Threat Detection 139

Threat Detection Risk Architecture Artificial Intelligence 139

Cisco Security

AUGUST 26, 2022

Because of Bitglass’ agentless architecture, the joint solution can secure any app, any device, anywhere. Cmd helps companies authenticate and manage user security in Linux production environments without slowing down teams — you don’t need to individually configure identities and devices. Read more about the integration here.

Firewall 145

Firewall Authentication Passwords Threat Detection 145

Security Boulevard

SEPTEMBER 20, 2024

Success ” (on-demand webinar) 5 - CISA issues plea to end XSS vulnerabilities Although cross-site scripting (XSS) vulnerabilities are easily preventable, software makers continue introducing them into their products, a situation that needs to stop. Maintain a comprehensive asset inventory, and keep software updated and patched.

Cybersecurity 97

Cybersecurity IoT Hacking Risk 97

Thales Cloud Protection & Licensing

DECEMBER 4, 2019

Security professionals know adequate security requires encryption, tokenization, authentication, and access management, so why are their good intentions too often sidelined? We also will be hosting a webinar about “The State of Data Security in Financial Services” on Thursday, Dec. The barriers are very real, but not insurmountable.

Financial Services 17

Financial Services Encryption Threat Reports Digital transformation 17

Cisco Security

AUGUST 26, 2021

Active Lock protects individual files by requiring step-up authentication until the threat is cleared. There are many options for step-up authentication, including Cisco Duo OTP and push notifications. Also have a look at a webinar recording about the D3E technology here. [2] Access the atomic actions here. [8] Read more here.

Technology 145

Technology Firewall VPN Authentication 145

Thales Cloud Protection & Licensing

JANUARY 24, 2024

Fraudulent Authentication These types of attacks are relevant to ‘long term identities’ where a private key (recovered from a public key) can be used to authenticate to a system for a variety of purposes that include: to create credentials that allow authentication into systems with the aim of causing damage or extracting information.

Risk 87

Risk Encryption Technology Architecture 87

eSecurity Planet

JUNE 21, 2024

5 Keeper, a low-cost password manager, highlights security with strong end-to-end encryption and authentication. Passwordless authentication: Accepts third-party passwordless authentication like QR codes, mobile authenticator apps, one-time passwords, and more. 5 Security: 4.6/5 5 Pricing: 3.6/5 5 Customer support: 3.9/5

Password Management 103

Password Management Passwords Encryption VPN 103

Thales Cloud Protection & Licensing

MARCH 10, 2021

The same rings true for encryption and authentication. There are many different layers of security involved in protecting connected devices, and security should start with a high-level architecture of the IoT stack and connected ecosystem. So, how do we address these challenges? Edge Devices. Thales + Keyfactor: IoT Security by Design.

IoT 77

IoT Firmware Manufacturing Encryption 77

Security Boulevard

JUNE 15, 2022

It is the de-facto standard for remote administration of servers, with SSH keys acting as identities to enable automated authentication, encryption, and authorization. Each identity, whether a human identity or a machine identity, needs to be authenticated and validated beyond any doubt before being granted access. Related posts.

Risk 52

Risk Architecture Digital transformation InfoSec 52

CyberSecurity Insiders

JANUARY 27, 2022

CrowdStrike remains committed to sustaining an inclusive workplace to protect its employees and ensure they feel empowered to be their authentic selves. Supporting an inclusive culture. Corporate social responsibility. Over the course of 2021, CrowdStrike remained committed to helping those in the LGBTQ+ community.

Authentication 52

Authentication Architecture Healthcare Education 52

CyberSecurity Insiders

JUNE 18, 2022

Patches to protect yourself and your customer could be anything from implementing 2FA authentication to using machine learning in fraud detection. All of these processes should be documented, and you can create a pre-recorded webinar to explain the stand procedure that must be followed, including some documentation of the outcome of patches.

Software 126

Software Marketing Risk Government 126

Security Boulevard

AUGUST 31, 2021

The increasing adoption of a microservices architecture in the cloud introduces additional complexity into the network environments as communication is solely via APIs, which presents additional security challenges. Instead, they are adopting an identity-focused approach to protecting access to internal resources and data.

Data breaches 64

Data breaches Software Government Architecture 64

Duo's Security Blog

NOVEMBER 9, 2020

That's why earlier this year, Datto, the world's leading innovator of MSP delivered IT solutions, partnered with Duo Security’s Managed Service Provider (MSP) Program to implement one of the most important resources for advanced secure access —two-factor authentication, or better known as 2FA or MFA.

Passwords 40

Passwords Data breaches Authentication Architecture 40

Responsible Cyber

JULY 13, 2024

Two-Factor Authentication (2FA) Enabling 2FA adds an extra layer of security by requiring a second form of verification in addition to your password. This could be: A text message code An authentication app (e.g., Click Get Started , then follow the prompts to add a phone number or authentication app. Go to the Settings menu.

Cybersecurity 52

Cybersecurity Cyber threats Cyber Attacks Authentication 52

Security Boulevard

FEBRUARY 8, 2023

By minimizing the human element involved in authentication through the passwordless methods of phishing-resistant MFA, MSPs can reduce human error and improve their insurability. We hope this webinar provides insight on the cyber insurance market. MSPs can address three key factors to improve their insurability.

Cyber Insurance 52

Cyber Insurance Insurance Marketing Risk 52

eSecurity Planet

MAY 28, 2024

API security risks may cause weak authentication, input validation, encryption, permissions, error handling, and rate limit issues. Use API gateways and management systems: Reduce the risk of vulnerabilities in individual APIs by centralizing security features such as authentication, rate limitation, and encryption.

Risk 70

Risk Cloud Migration DDOS Encryption 70

Appknox

AUGUST 3, 2022

A critical part of integration testing, API testing is known to quickly and efficiently test the logic of the build architecture by utilizing the most advanced API security testing tools. Without SSL, the whole process of authentication is a lie. Unlock the Secrets of API Security with our detailed Appknox Webinar today!

Mobile 52

Mobile Risk Authentication Antivirus 52

Herjavec Group

MAY 17, 2021

Herjavec Group supports the Assessment, Design, Deployment, and Management of your IAM solutions through a comprehensive offering including Strategic Workshops, Advisory Services, Architecture & Implementation, and Managed IAM. Join a webinar at [link] and realize that infosec knowledge is power. .

InfoSec 52

InfoSec Technology Marketing B2C 52

NopSec

APRIL 3, 2024

The application behavior varies depending on the authentication status of the attacker. An unauthenticated user can only read the first three (3) lines of a file, however authenticated users can read the entire file system. This also makes it the most likely entry point and means to target the database.

VPN 45

VPN Authentication Architecture Software 45

Security Boulevard

NOVEMBER 1, 2024

The new guidance explains the benefits that come with strong authentication, while also minimising the friction that some users associate with MFA,” reads an NCSC blog. In other words, what type of MFA method to use depends on people’s roles, how they work, the devices they use, the applications or services they’re accessing and so on.

CISO 59

CISO Cybersecurity Authentication Government 59

Thales Cloud Protection & Licensing

MARCH 31, 2022

Azure AD and Thales support for CBA authentication reflects the growing value of high assurance MFA. The EDR initiative relies on Multi-factor Authentication (MFA) as a critical component to protect against cyber threats such as ransomware. Now, Azure AD users can authenticate using X.509 Thu, 03/31/2022 - 12:55.

Authentication 77

Authentication Government Cyber threats Phishing 77

Thales Cloud Protection & Licensing

APRIL 14, 2025

A context-rich approach to authentication and access management, bringing zero-trust without the compromise to your user experience. Watch our on-demand webinar. In this attack, threat actors impersonated admins by crafting server-side request forgery (SSRF) to bypass authentication. The answer? How did we get here?

Digital transformation 71

Digital transformation Authentication Healthcare Risk 71

Security Boulevard

APRIL 14, 2025

A context-rich approach to authentication and access management, bringing zero-trust without the compromise to your user experience. Watch our on-demand webinar. In this attack, threat actors impersonated admins by crafting server-side request forgery (SSRF) to bypass authentication. The answer? How did we get here?

Digital transformation 52

Digital transformation Authentication Healthcare Risk 52

Duo's Security Blog

JANUARY 28, 2022

Imagine a shift away from logging into a “network” to having security seamlessly built into the network, and multi-factor authentication and authorization continuously performed at the application level on the fly — without users typing passwords. The vision being set forth by OMB is ambitious — but vital. What’s Next?

Authentication 52

Authentication Government DNS Encryption 52

Security Boulevard

JUNE 22, 2021

As we go through each section, we will intersperse thoughts from Sam King and Chris Wysopal, co-founder and CTO at Veracode, as well as thoughts and statements from Forrester analysts, Allie Mellen, Jeff Pollard, Steve Turner, and Sandy Carielli, from their recently aired webinar, A Deep Dive Into The Executive Order On Cybersecurity.

Cybersecurity 85

Cybersecurity Government Software Architecture 85

Veracode Security

JUNE 22, 2021

As we go through each section, we will intersperse thoughts from Sam King and Chris Wysopal, co-founder and CTO at Veracode, as well as thoughts and statements from Forrester analysts, Allie Mellen, Jeff Pollard, Steve Turner, and Sandy Carielli, from their recently aired webinar, A Deep Dive Into The Executive Order On Cybersecurity.

Cybersecurity 80

Cybersecurity Government Software Architecture 80