Thales Cloud Protection & Licensing

FEBRUARY 1, 2024

Passkeys and The Beginning of Stronger Authentication madhav Fri, 02/02/2024 - 05:23 How passkeys are rewriting the current threat landscape Lillian, an experienced CISO, surveyed the threat landscape. Despite solid cybersecurity defenses within her enterprise, the reliance on age-old passwords left it vulnerable.

Authentication 138

Authentication Passwords CISO Password Management 138

SecureWorld News

DECEMBER 12, 2024

James Scobey, CISO at Keeper Security, stated, "The reported downtime of online ordering demonstrates how even temporary interruptions can have a significant impact on revenue and brand reputation." Strong Password Management: Enforce strong, unique passwords and multi-factor authentication to protect against unauthorized access.

Password Management 109

Password Management Passwords CISO Cybersecurity 109

The Last Watchdog

MARCH 10, 2020

I spoke with Maurice Côté, VP Business Solutions, and Martin Lemay, CISO, of Devolutions , at the RSA 2020 Conference in San Francisco recently. Devolutions is a Montreal, Canada-based company that provides remote connection in addition to password and privileged access management (PAM) solutions to SMBs. That’s our goal.”

Authentication 170

Authentication Risk Digital transformation Passwords 170

CSO Magazine

MARCH 30, 2022

Authentication remains one of the most painstaking challenges faced by CISOs in organizations large and small. Authentication a significant obstacle for modern CISOs. Authentication continues to test CISOs for several reasons, with its modern definition being the first to address, Netskope CISO Lamont Orange tells CSO.

Authentication 107

Authentication CISO CSO Passwords 107

Security Boulevard

AUGUST 30, 2024

Misaligned expectations, poor communication and even attempts to bury vulnerabilities create a frustrating and potentially dangerous situation for CISOs. Cybercriminals are constantly developing new techniques to bypass 2FA, such as SIM swapping, phishing attacks and exploiting vulnerabilities in authentication apps. The key takeaway?

CISO 111

CISO Cybersecurity Authentication Security Awareness 111

Security Boulevard

JANUARY 5, 2024

Insight #1 In light of 23andMe blaming victims for their data getting breached, I have two things to ask: Users, please stop reusing passwords. Providers, please start requiring multifactor authentication (MFA). The post Cybersecurity Insights with Contrast CISO David Lindner | 1/5/24 appeared first on Security Boulevard.

CISO 116

CISO Cybersecurity Authentication Passwords 116

Security Boulevard

DECEMBER 21, 2021

In 2017, the National Institute of Standards and Technology (NIST) released NIST Special Publication 800-63B Digital Identity Guidelines to help organizations properly comprehend and address risk as it relates to password management on the part of end users.

Password Management 138

Password Management Passwords Risk Technology 138

Security Boulevard

APRIL 19, 2024

If you’re not using basic measures like password managers, two-factor authentication (2FA) and cybersecurity training, you’re risking more than you might realize. The post Cybersecurity Insights with Contrast CISO David Lindner | 4/19/24 appeared first on Security Boulevard.

CISO 116

CISO Cybersecurity Password Management Authentication 116

SecureWorld News

FEBRUARY 20, 2025

He urges enterprises to implement Privileged Access Management (PAM) solutions and multi-factor authentication (MFA) and to enforce robust password policies to reduce the risk of account compromise. Require 16+ character unique passwords stored in an enterprise password manager.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

The Last Watchdog

DECEMBER 18, 2024

FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies. Simic Bojan Simic , CEO, HYPR The era of passwords will further decline as credential misuse rises, with AI both aiding and challenging security efforts.

Risk 173

Risk Threat Detection Technology Phishing 173

The Last Watchdog

FEBRUARY 14, 2022

Which topics should CEOs, CIOs and CISOs have on their radar when it comes to Identity and Access Management ( IAM ) and cyber security risks in 2022? Related: How IAM authenticates users. Multi-Factor Authentication ( MFA ) can tremendously increase their access security and prevent phishing and social engineering attacks.

CISO 245

CISO Social Engineering Authentication Risk 245

Security Boulevard

MAY 5, 2022

"If your website authentication form prevents users from pasting in their password, or from using their password manager you need to fix it immediately. You are enabling and encouraging users to create and use poor passwords.". . Do a search for the top 200 most common passwords in your favorite search engine.

CISO 98

CISO Password Management Cybersecurity Passwords 98

SC Magazine

MARCH 2, 2021

House Oversight and Homeland Security committees last week, SolarWinds’s former and current CEOs blamed an intern for creating a weak FTP server password and leaking it on GitHub – an act which may or may not have contributed to a supply chain hack that impacted users of the tech firm’s Orion IT performance monitoring platform.

Passwords 129

Passwords Password Management CISO InfoSec 129

Security Boulevard

JANUARY 26, 2024

The attackers reportedly got in through an old testing environment, which seemingly had no multi-factor authentication (MFA) stopping them. The post Cybersecurity Insights with Contrast CISO David Lindner | 1/26/24 appeared first on Security Boulevard. Threat models? It all matters.

CISO 112

CISO Cybersecurity Authentication Passwords 112

Approachable Cyber Threats

OCTOBER 7, 2024

What changed, and what is NIST's updated password guidance and the role of password strength in 2024?” One area where best practices have evolved significantly over the past twenty years is password security best practices. What are the key takeaways from NIST's updated password guidance?”

Passwords 105

Passwords Password Management Authentication Risk 105

Duo's Security Blog

FEBRUARY 8, 2021

Setting Up an Instant Registration Database You don’t know who’s going to sign up and register, and you don’t have time to integrate it with any databases you have with citizen data in order to uniquely identify and authenticate them. This does a bit of authentication by proving possession of the email address that was registered.

CISO 120

CISO Passwords Authentication Accountability 120

The Last Watchdog

MARCH 11, 2025

“For CISOs and security leaders, the goal isn’t just detectionit’s the remediation of these vulnerabilities before they’re exploited,” said Fourrier. These credentials lack standardized patterns, making them nearly impossible to detect with conventional tools. This surpasses the overall GitHub average of 4.6%.

Government 130

Government Authentication Passwords CISO 130

SC Magazine

MAY 7, 2021

Google announced that it will automatically enroll users in multifactor authentication – what they are calling two-step verification. Using their mobile device to sign in gives people a safer and more secure authentication experience than passwords alone,” Risher said. Photo by Mario Tama/Getty Images).

Authentication 89

Authentication Passwords Password Management Mobile 89

Security Boulevard

AUGUST 15, 2023

Enterprises are developing strategies now to protect identities from being stolen and abused even as a true passwordless future is slowly coming into view, according to Joseph Carson, chief security scientist and advisory CISO at privileged access manager (PAM) vendor Delinea.

Passwords 98

Passwords CISO Authentication Cybersecurity 98

Duo's Security Blog

JANUARY 26, 2024

In today’s complex IT landscape, one of the biggest problems faced by a Chief Information Security Officer (CISO) and their IT security team are forgotten and stolen passwords. On average, employees lose 11 hours per year resetting passwords and an average company spends ~$5M per year on setting and resetting passwords.

Passwords 93

Passwords Authentication Mobile CISO 93

SecureWorld News

MARCH 27, 2025

Despite Oracle's denial of any breach, cybersecurity experts and researchers from CloudSEK and other firms have raised serious concerns, pointing to potential vulnerabilities in Oracle's authentication systems and the broader implications for cloud-based supply chains. oraclecloud.com. The published credentials are not for the Oracle Cloud.

CISO 65

CISO Data breaches Encryption Authentication 65

SecureWorld News

APRIL 3, 2025

A healthcare CISO I mentored was frustrated by apparent lack of support for a medical device security program. Category 1: "The problem doesn't exist" Their Attack: "We've never required multi-factor authentication for internal applications before, and we haven't had any major breaches. You might be surprised at what you find.

Ransomware 72

Ransomware CISO Authentication Healthcare 72

Thales Cloud Protection & Licensing

FEBRUARY 19, 2025

Go Beyond FIDO Standards: Best Practices When Deploying FIDO Security Keys in Enterprise madhav Thu, 02/20/2025 - 06:22 Initially designed for the consumer market, the FIDO (Fast IDentity Online) standard aims to replace passwords with more secure authentication methods for online services. While recent versions, like FIDO2.1,

Authentication 71

Authentication Passwords Marketing Risk 71

SecureWorld News

MAY 2, 2025

This surge is driven by a convergence of factorsfrom a spike in ransom ware attacks to the digital transformation of healthcarethat CISOs and healthcare executives must understand and act upon. Understanding these factors can help CISOs and healthcare leaders prioritize their security strategies.

Healthcare 101

Healthcare Marketing Cybersecurity CISO 101

SecureWorld News

APRIL 23, 2025

The 2025 DBIR is a call to arms for CISOs and security leaders to rethink how they detect, respond to, and recover from breaches. Vice President, Security & AI Strategy, and Field CISO at Darktrace: "While GenAI was the talk of 2024, Agentic AI will be a significant focus for organizations in the year ahead. Nicole Carignan , Sr.

Ransomware 101

Ransomware CISO Backups Risk 101

Duo's Security Blog

NOVEMBER 1, 2022

In the 2022 Duo Trusted Access Report: Logins in a Dangerous Time , we examine the dramatic shift beyond discussions of password complexity to those where investing in multi-factor authentication (MFA) and passwordless technology are mandatory costs of doing business. of all authentications. Yet, they wait on the wire.

Authentication 144

Authentication Passwords CISO Technology 144

Duo's Security Blog

SEPTEMBER 16, 2021

At Duo, we're building a passwordless authentication solution that’s as easy to set up as it is to use – with our world-class security baked in. Your Journey Begins with Multi-Factor Authentication See the video at the blog post. Advisory CISO J. The passwordless future is sooner than you think. Our experts have you covered.

Authentication 128

Authentication Passwords Phishing CISO 128

Security Boulevard

OCTOBER 11, 2024

Passwordless Authentication without Secrets! divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets.

Authentication 69

Authentication Retail Healthcare Manufacturing 69

The Last Watchdog

JUNE 12, 2025

They’re now studying how microservices make decisions, how APIs authenticate across trust zones, and where subtle gaps in identity controls allow lateral movement without detection. LW: What’s the biggest misconception CISOs have about API protection? But those tools, while useful, only give you a partial view.

CISO 100

CISO Mobile Authentication Passwords 100

Duo's Security Blog

JUNE 12, 2023

Before we can discuss passkeys, we need to lay some groundwork and discuss authentication, Passwordless and WebAuthn. What is authentication? Authentication is the process of verifying your online identity. We started with usernames and passwords – something you know. What is passwordless? It is MFA Phishing Resistant.

Authentication 135

Authentication Passwords Password Management Phishing 135

The Last Watchdog

MARCH 4, 2024

Strengthen authentication. This means using longer passwords — at least 16 characters , as recommended by experts — in a random string of upper and lower letters, numbers, and symbols. Next, implement multi-factor authentication to make gaining access even more difficult for hackers.

Social Engineering 213

Social Engineering Risk Cybersecurity Authentication 213

The Last Watchdog

APRIL 13, 2022

Enforce strong passwords and implement multi-factor authentication (MFA) — by educating users about using a unique password for each account and enforcing higher security for privileged accounts (administrators, root). Enable auto-update features if available.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

SC Magazine

APRIL 21, 2021

The hack of Words with Friends in 2019 was high-profile, but today’s columnist, Yuval Elddad of CYE, says CISOs at all gaming companies have to take a closer look at the growing threats to online gaming platforms. The info included names, email addresses, login IDs, hashed and salted passwords and phone numbers.

CISO 94

CISO Marketing Accountability Passwords 94

The Last Watchdog

AUGUST 19, 2021

The attacker claims to have compromised an end-of-lifed GPRS system that was exposed to the internet and was able to pivot from it to the internal network, where they were able to launch a brute force authentication attack against internal systems. Most immediately is the ubiquity of 2-factor authentication.

Mobile 235

Mobile Data breaches Authentication Accountability 235

Security Boulevard

FEBRUARY 1, 2024

Passkeys and The Beginning of Stronger Authentication madhav Fri, 02/02/2024 - 05:23 How passkeys are rewriting the current threat landscape Lillian, an experienced CISO, surveyed the threat landscape. Despite solid cybersecurity defenses within her enterprise, the reliance on age-old passwords left it vulnerable.

Authentication 64

Authentication Passwords CISO Password Management 64

Malwarebytes

NOVEMBER 5, 2023

Last week on Malwarebytes Labs: Apache ActiveMQ vulnerability used in ransomware attacks YouTube launches “global effort” to block ad blockers Should you allow your browser to remember your passwords?

CISO 119

CISO Authentication Passwords Ransomware 119

eSecurity Planet

JANUARY 10, 2022

A report last week by the New York Attorney General’s Office put a spotlight on the ongoing threat of credential stuffing, a common technique used by cybercriminals that continues to spread and is helping to fuel the push for security practices that don’t involve usernames and passwords. Password Reuse.

Passwords 120

Passwords Password Management Authentication Accountability 120