Authentication, CSO and Technology - Cyber Security Informer

How deepfakes enhance social engineering and authentication threats, and what to do about it

CSO Magazine

OCTOBER 25, 2021

Deepfake technology is an escalating cybersecurity threat to organizations. This content can realistically replicate or alter appearance, voice, mannerisms or vocabulary with the aim of tricking targets both human and autonomous into believing that what they see, hear or read is authentic and trustworthy.

Social Engineering

Social Engineering Engineering Authentication CSO

SecureAuth unveils new end-to-end access and authentication solution

CSO Magazine

JUNE 2, 2022

A new next-generation access and authentication platform powered by artificial intelligence was launched Wednesday by SecureAuth. The days of granting blanket trust after initial authentication are over, says SecureAuth CEO Paul Trulove. "If, To read this article in full, please click here

Authentication

Authentication Artificial Intelligence CSO Passwords

Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima

The Security Ledger

DECEMBER 21, 2022

Paul speaks with Caleb Sima, the CSO of the online trading platform Robinhood, about his journey from teenage cybersecurity phenom and web security pioneer, to successful entrepreneur to an executive in the trenches of protecting high value financial services firms from cyberattacks. Caleb Sima is the CSO at Robinhood.

CSO

CSO Financial Services CISO Mobile

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

CSO’s Guide: Water-Tight Account Security For Your Company

Security Boulevard

FEBRUARY 5, 2024

This essential CSO guide outlines the robust account monitoring, access notifications, multi-factor authentication, deception technology, and user controls crucial for implementing unmatched account security across your organization.

Account Security

Account Security Accountability CSO Authentication

Legacy, password-based authentication systems are failing enterprise security, says study

CSO Magazine

MARCH 28, 2023

Authentication-related attacks grew in 2022, taking advantage of outdated, password-based authentication systems, according to a study commissioned by HYPR, a passwordless multifactor authentication (MFA) provider based in the US.

Authentication

Authentication Passwords Marketing Phishing

CSO of the Year | Dan Meacham helps Legendary Entertainment’s movie magic live safely in the cloud

SC Magazine

MAY 3, 2021

Dan Meacham is chief information security officer and CSO with Legendary Entertainment, the production company behind Godzilla vs. Kong and other popular films such as The Dark Knight and Jurassic World. If they can pass this authentication process, then they don’t even need a password to log in. Legendary Entertainment).

CSO

CSO InfoSec Media Authentication

12 risk-based authentication tools compared

CSO Magazine

MARCH 1, 2022

Risk-based authentication (RBA), also called adaptive authentication, has come of age, and it couldn’t happen fast enough for many corporate security managers. What is risk-based authentication? It creates a risk profile of the person or device requesting access to the system.

Authentication

Authentication Risk Phishing Accountability

ForgeRock, Secret Double Octopus offer passwordless authentication for enterprises

CSO Magazine

MARCH 20, 2023

ForegeRock is adding a new passwordless authentication capability, called Enterprise Connect Passwordless, to its flagship Identity Platform product to help eliminate the need for user passwords in large organizations.

Authentication

Authentication VPN Mobile Passwords

Xage’s new IAM offering provides multilayer authentication for ICS/OT

CSO Magazine

APRIL 20, 2023

Zero trust security provider Xage Security has added a multilayer identity and access management (IAM) solution to its decentralized access control platform Xage Fabric to secure assets in different layers of operational technology (OT) and industrial control systems (ICS) environments.

Authentication

Authentication Technology

Episode 250: Window Snyder of Thistle on Making IoT Security Easy

The Security Ledger

MAY 13, 2023

In this episode of the podcast, I speak with Window Snyder, the founder and CEO of Thistle Technologies about the (many) security challenges facing Internet of Things (IoT) devices and her idea for making things better: Thistle’s platform for secure development and deployment of IoT devices. The post Episode 250: Window Snyder of Thistle on.

IoT

IoT Internet Internet Technology

BrandPost: What’s Next in Authentication? Passwordless Security

CSO Magazine

DECEMBER 16, 2022

Technology has been an enabler and has leveled the playing field for so many companies around the world, giving them the ability to compete against companies hundreds of times their size. We have seen the world move forward at a staggering pace thanks to technological advancements. We certainly live in interesting times.

Authentication

Authentication Passwords Technology Internet

Podcast Episode 134: The Deep Fake Threat to Authentication and analyzing the PEAR Compromise

The Security Ledger

FEBRUARY 19, 2019

And, in our second segment, Sam Bisbee the CSO of the firm ThreatStack joins us to talk about last month's hack of the PEAR open source package manager and why data deserialization attacks are a growing threat to projects that use open source components. They risk undermining a range of voice and image based authentication technologies.

Authentication

Authentication CSO Artificial Intelligence Social Engineering

Cisco patches high and critical flaws across several products

CSO Magazine

APRIL 21, 2023

The flaws can lead to administrative command injection, authentication bypass, remote privilege escalation and denial of service. The Cisco Industrial Network Director (IND), a network monitoring and management server for operational technology (OT) networks, received patches for two vulnerabilities rated critical and medium respectively.

Authentication

Authentication Technology Software

GUEST ESSAY: Leveraging ‘zero trust’ and ‘remote access’ strategies to mitigate ransomware risks

The Last Watchdog

MAY 5, 2022

Enable multi-factor authentication (MFA) to access your applications and services, especially for admin access to platforms and backend systems. About the essayist: Den Jones, CSO at Banyan Security , which supplies s imple, least-privilege, multi-cloud application access technologies. Food for thought, eh!

Ransomware

Ransomware Risk Internet Internet

Mitek launches MiVIP platform to fight identity theft

CSO Magazine

JUNE 24, 2022

The Mitek Verified Identity Platform (MiVIP) melds the company's mobile technologies with those of its recent acquisitions to give its customers flexible control over their consumers' experiences. To read this article in full, please click here

Identity Theft

Identity Theft Mobile Technology Authentication

Auditing the IRS: Asset Management Problems Causing Cybersecurity Risks

SecureWorld News

AUGUST 26, 2020

How massive is the IRS information technology infrastructure? billion to operate its current information technology infrastructure, nearly $2.04 Aflac CSO Tim Callahan told us as much after his keynote at a SecureWorld conference last year. IRS legacy system numbers: math error? Asset management is difficult.

Risk

Risk Cybersecurity CSO Technology

Researchers warn of darkverse emerging from the metaverse

CSO Magazine

AUGUST 24, 2022

Security provider Trend Micro, however, warns in a recent research report that cybercriminals could misuse the technology for their own purposes. The machinations of the cyber gangsters could even take place in protected rooms that can only be reached from a specific physical location and via valid authentication tokens.

Authentication

Authentication Internet Internet Technology

How cybercriminals use public online and offline data to target employees

CSO Magazine

SEPTEMBER 28, 2022

Depending on the size of the firm, if you use multifactor authentication, you also deploy two-factor tokens or applications to their cellphones or provide them with a work phone. The first few days on the job can be hectic, with a lot of new technology to deal with. It’s normal for employees to also have personal email and cellphones.

Media

Media Authentication Technology

Dozens of insecure-by-design flaws found in OT products

CSO Magazine

JUNE 22, 2022

A new research project has uncovered 56 vulnerabilities in operational technology (OT) devices from 10 different vendors, all of which stem from insecurely designed or implemented functionality rather than programming errors. To read this article in full, please click here

Firmware

Firmware Authentication Technology

How to build a zero trust ecosystem

SC Magazine

MAY 19, 2021

Trusted identities are separate authentication and authorization planes that make up the overall trust of a user, their devices, and their access. Transforming your technology infrastructure can be long, tedious work, and you will operate in a hybrid Zero Trust/legacy mode for a time. James Carder, LogRhythm CSO.

CISO

CISO CSO Architecture IoT

Why Public Agencies Are Struggling to Implement Zero Trust

Thales Cloud Protection & Licensing

MARCH 15, 2022

The mandate further emphasizes the importance of ZTA as a way of balancing agencies’ ongoing migration to cloud technology with their duty to help to defend the federal government against digital incidents. Bush administration, to CSO. The Challenges of Building a ZTA. Typically, a bucket of cash doesn't fall out of the sky.

Architecture

Architecture Government CSO Technology

BrandPost: Network Security and the Heart of a Zero Trust Architecture

CSO Magazine

JANUARY 22, 2021

As part of a Zero Trust approach to cybersecurity, network flows should be authenticated before being processed and access determined by dynamic policy.

Architecture

Architecture Network Security Authentication Technology

BrandPost: What It Takes to Implement Zero Trust With Employees Working From Home

CSO Magazine

FEBRUARY 23, 2021

With cyberthreats continuing to grow at the same time enterprises are undergoing digital transformations that increase reliance on digital technology, more of these businesses are opting for a zero-trust approach to security – often using service providers to help.

Digital transformation

Digital transformation VPN Authentication Technology

BrandPost: The Growing Challenges of Certificate Lifecycle Management

CSO Magazine

JANUARY 21, 2022

Digital certificates and PKI enabled technology are pervasive yet largely unseen, unknown and not well understood.

Authentication

Authentication Internet Internet Technology

The Nature of Cybersecurity Defense: Pentagon To Reveal Updated Zero-Trust Cybersecurity Strategy & Guidelines

CyberSecurity Insiders

NOVEMBER 15, 2022

In order to achieve Zero Trust, application security and API security can’t be left out of the equation; shares Richard Bird, CSO, of Traceable AI. The Proper Authentication of Digital Assets. Zero Trust without API security is simply, not Zero Trust. That’s why authorization is a critical aspect of zero-trust architecture.

Cybersecurity

Cybersecurity Architecture Energy and Utilities Encryption

Camera tricks: Privacy concerns raised after massive surveillance cam breach

SC Magazine

MARCH 10, 2021

Making matters worse, the cameras employ facial recognition technology, which leads to questions as to whether an attacker could actually identify individuals caught on camera and then pursue them as targets for social engineering schemes or something even more nefarious. “For Separation of duties and the least access principle apply again.

Surveillance

Surveillance IoT Accountability Passwords

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. Longtime network and system administrator Jack Daniel is a technology community activist, mentor, and storyteller. Brian Krebs | @briankrebs. Denial-of-Suez attack. Parisa Tabriz | @laparisa.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Cybersecurity Awareness Month: Security Experts Reflect on Safety

CyberSecurity Insiders

NOVEMBER 1, 2021

Cyber attacks nowadays do not often come from ingenious ‘hackers’ in dark rooms, they’re often the result of an employee reusing the same password, or businesses not implementing basic practices such as multi-factor authentication. Unfortunately, cybercriminals know this and have engineered their technology to behave accordingly.

Cybersecurity

Cybersecurity Backups Ransomware Passwords

BrandPost: The Journey to Zero Trust

CSO Magazine

FEBRUARY 1, 2021

A company that has effectively implemented DLP technology across the enterprise, for example, has already determined their sensitive data and understands its location. It may involve a more agent-based approach and/or collectively group resources together with authentication and policy being governed at a gateway.

Architecture

Architecture B2B Government Risk

Cyber Security Informer

How deepfakes enhance social engineering and authentication threats, and what to do about it

SecureAuth unveils new end-to-end access and authentication solution

Webinars

Trending Sources

Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima

Webinars

CSO’s Guide: Water-Tight Account Security For Your Company

Legacy, password-based authentication systems are failing enterprise security, says study

CSO of the Year | Dan Meacham helps Legendary Entertainment’s movie magic live safely in the cloud

12 risk-based authentication tools compared

ForgeRock, Secret Double Octopus offer passwordless authentication for enterprises

Xage’s new IAM offering provides multilayer authentication for ICS/OT

Episode 250: Window Snyder of Thistle on Making IoT Security Easy

BrandPost: What’s Next in Authentication? Passwordless Security

Podcast Episode 134: The Deep Fake Threat to Authentication and analyzing the PEAR Compromise

Cisco patches high and critical flaws across several products

GUEST ESSAY: Leveraging ‘zero trust’ and ‘remote access’ strategies to mitigate ransomware risks

Mitek launches MiVIP platform to fight identity theft

Auditing the IRS: Asset Management Problems Causing Cybersecurity Risks

Researchers warn of darkverse emerging from the metaverse

How cybercriminals use public online and offline data to target employees

Dozens of insecure-by-design flaws found in OT products

How to build a zero trust ecosystem

Why Public Agencies Are Struggling to Implement Zero Trust

BrandPost: Network Security and the Heart of a Zero Trust Architecture

BrandPost: What It Takes to Implement Zero Trust With Employees Working From Home

BrandPost: The Growing Challenges of Certificate Lifecycle Management

The Nature of Cybersecurity Defense: Pentagon To Reveal Updated Zero-Trust Cybersecurity Strategy & Guidelines

Camera tricks: Privacy concerns raised after massive surveillance cam breach

Top Cybersecurity Accounts to Follow on Twitter

Cybersecurity Awareness Month: Security Experts Reflect on Safety

BrandPost: The Journey to Zero Trust

Stay Connected