Webroot

FEBRUARY 5, 2025

But what exactly are passkeys, and why are they considered the future of authentication? With Password Day coming up this Saturday, it’s the perfect time to discuss the future of authentication. Passkeys leverage public-key cryptography to authenticate users without requiring them to remember or type in a password.

Authentication 65

Authentication Password Management Passwords Backups 65

Security Boulevard

APRIL 18, 2025

Also, find out what Tenable webinar attendees said about identity security. Protect all administrative access with phishing-resistant multi-factor authentication. Check out NISTs effort to further mesh its privacy and cyber frameworks. Plus, learn why code-writing GenAI tools can put developers at risk of package-confusion attacks.

Risk 59

Risk Cybersecurity Data privacy Software 59

Hacker's King

OCTOBER 26, 2024

Activities during this week include engaging workshops, informative webinars, and community events, all designed to empower individuals with the knowledge and skills necessary to navigate today’s cyber threats effectively. These sessions not only educate participants but also foster a sense of community among those invested in cybersecurity.

Cybersecurity 59

Cybersecurity Cyber threats Education Passwords 59

Duo's Security Blog

SEPTEMBER 1, 2023

Remote Users The web authentication process begins when the remote user wants to connect to an application. Users need to be trained since they’re a new way of authentication, but typically users can enroll or manage them through a UI-driven workflow by themselves. We'll also talk about areas of improvement for passkeys.

Passwords 133

Passwords Authentication Insurance Cyber Insurance 133

Duo's Security Blog

OCTOBER 11, 2023

To learn more about how Duo’s access management trifecta empowers you to authenticate further and defend faster, be sure to tune into our webinar Authenticate Further, Defend Faster with Higher Security from Duo. In fact, multi-factor authentication (MFA) has been the access security tool of choice for years now.

Authentication 126

Authentication Risk Technology Phishing 126

Duo's Security Blog

APRIL 23, 2025

"Ninety-nine percent of attacks can be blocked with multi-factor authentication (MFA) is an oft-discussed quote from 2019. New threat types such as push-bombing, social engineering, and spear phishing are forcing organizations to do more than rely on MFA alone. Attacks have evolved.

Authentication 59

Authentication Risk Social Engineering Accountability 59

Duo's Security Blog

NOVEMBER 20, 2023

One piece of evidence to support this hypothesis is the low adoption of a basic security control that protects against identity-based attacks - multi-factor authentication (MFA). Add to this, the risks of weak authentication factors such as SMS one-time passcodes and dormant or inactive accounts.

Threat Detection 138

Threat Detection Authentication Accountability Data breaches 138

Security Boulevard

MARCH 21, 2025

77% of organizations have the overprivileged default Compute Engine service account configured in Google Vertex AI Notebooks which puts all services built on this default Compute Engine at risk. Prioritize vulnerability remediation by understanding which CVEs pose the greatest risk to your organization.

Risk 69

Risk IoT Cybersecurity Manufacturing 69

Duo's Security Blog

APRIL 20, 2023

Accounting for nearly a quarter of reported incidents in Australia, phishing is a broad category of social engineering with several variations. These social engineering techniques tricked employees into revealing their login credentials, which allowed attackers to access additional systems and data. What is phishing?

Phishing 106

Phishing Social Engineering Authentication Engineering 106

Security Boulevard

JULY 6, 2023

It's no secret that the bad guys are training their artificial intelligence (AI) engines to crack passwords, perform account takeovers (ATO), and automate their ransomware demands. Also, be sure to attend our webinar, Protect Your Customers Against Identity Fraud. Sophisticated identity attacks are on the rise.

Artificial Intelligence 105

Artificial Intelligence Passwords Authentication Accountability 105

Duo's Security Blog

JULY 21, 2022

Trust Monitor does this by ingesting and then analyzing authentication data (telemetry) in real time to build user profiles which it then compares to future login attempts. For example, Scott typically logs in each morning around 7:30 am from California on his Mac running macOS Monterey and he accesses Microsoft Office.

Authentication 105

Authentication Threat Detection Accountability Mobile 105

Security Boulevard

MAY 2, 2025

Enforce multi-factor authentication across all software development environments. The scope of the BOD 25-01 includes all production or operational cloud tenants (operating in or as a federal information system) utilizing Microsoft 365, Tenable Staff Research Engineer Mark Beblow explained in a recent blog about this directive.

Cybersecurity 52

Cybersecurity Software Cyber Risk Risk 52

CyberSecurity Insiders

APRIL 10, 2023

In the current digital landscape, identity security has gained paramount importance due to the growing cyber risks posed by phishing and social engineering attacks utilizing AI. Identity Verification and Validation: Users' and devices' identities should be confirmed and authenticated before granting access to systems and data.

Identity Theft 105

Identity Theft Education Authentication Data breaches 105

Duo's Security Blog

OCTOBER 24, 2023

Be sure to tune into our webinar - Authenticate Further, Defend Faster with Higher Security from Duo – to learn more about ways to protect against MFA bypass attacks, credential theft and compromised third-party security. .* And be sure to catch all the action in Marvel Studios’ The Marvels , in US cinemas November 10th!

Social Engineering 88

Social Engineering Authentication Education Engineering 88

Thales Cloud Protection & Licensing

JANUARY 26, 2022

Throughout 2021 Thales hosted several webinars whose purpose was to raise awareness on trending topics around cybersecurity and privacy. Although all webinars were a success, some stood out of the competition for various reasons. Although all webinars were a success, some stood out of the competition for various reasons.

Encryption 71

Encryption Marketing Data privacy Engineering 71

Duo's Security Blog

JULY 1, 2021

Tall Tale #1: PINs Are Just Passwords In Part 1 , we talked about how passwordless authentication is still multi-factor: Possession of a private key, ideally stored on a piece of secure hardware A biometric or PIN the authenticator uses to locally verify the user’s identity Reasoning about a PIN being used as a factor is simpler than a biometric.

Passwords 98

Passwords Surveillance Authentication Risk 98

Duo's Security Blog

FEBRUARY 6, 2024

Addressing identity-based attacks Duo has made a number of significant investments in identity security over the last several years with the release of Duo’s Trust Monitor, Duo’s Risk-Based Authentication, and moving Duo’s Trusted Endpoints feature into Duo’s Essentials edition. Stay tuned!

Accountability 119

Accountability Authentication Risk Marketing 119

Security Affairs

FEBRUARY 20, 2022

Scammers use to compromise legitimate business or personal email accounts through different means, such as social engineering or computer intrusion to conduct unauthorized transfers of funds. Use secondary channels or two-factor authentication to verify requests for changes in account information. ” reads the FBI’s PSA.

Accountability 100

Accountability Social Engineering Scams Mobile 100

Security Boulevard

MARCH 19, 2021

Social engineering lures are a good example. HelpSystems’ GoAnywhere MFT uses encryption and authentication to keep enterprises safe when sharing files and can also be deployed in harness with Clearswift’s Secure ICAP Gateway. Request a Demo. Additional Resources. Featured: .

Cybersecurity 119

Cybersecurity CISO Social Engineering Technology 119

SecureWorld News

OCTOBER 19, 2021

The malicious campaigns Charming Kitten are unleashing on unsuspecting victims makes use of superior social engineering, such as creating dummy accounts on Gmail that look realistic enough to trick users into clicking through. Users were instructed to activate an invitation to a (fake) webinar by logging in.

Phishing 97

Phishing Authentication Social Engineering Government 97

Security Boulevard

SEPTEMBER 20, 2024

The Technique Inference Engine (TIE) lets cybersecurity pros input tactics or techniques from the MITRE ATT&CK knowledge base they’ve detected in their environment. Tenable Research is proud to be a key contributor to the new MITRE Engenuity Technique Inference Engine (TIE) – a powerful resource for security teams.

Cybersecurity 97

Cybersecurity IoT Hacking Risk 97

Anton on Security

JULY 30, 2021

Cloud authentication logs?) Recent SANS Webinar on Detection By the way, this post ended up being more of “an incomplete thought” then a solid framework , but I hope you forgive me. Application traces? In addition to attacker knowledge, you need some useful telemetry that you can apply that knowledge to. More to come!

Threat Detection 130

Threat Detection Authentication Engineering Cybersecurity 130

Cisco Security

AUGUST 26, 2022

Data collected from Umbrella can then be routed to Sumo’s Cloud SIEM, where it is then automatically normalized and applied to our rule’s engine. The Fastvue Site Clean engine intelligently interprets Cisco Secure Firewall log data so that non-technical employees can easily see what people are actually doing online.

Firewall 144

Firewall Authentication Passwords Threat Detection 144

Duo's Security Blog

DECEMBER 19, 2024

While we tend to associate phishing emails more with our personal accounts, attacks targeting our work identities whether through socially engineered phishing, brute force, or another form, are very common. In Duo, see how to easily generate a Denied Authentications report through the Duo Admin Panel.

Phishing 64

Phishing Authentication Social Engineering Passwords 64

Thales Cloud Protection & Licensing

NOVEMBER 14, 2018

Because IoT devices typically have limited CPU and storage capabilities, many devices transmit data in the clear and with limited authentication capabilities to a central collection unit where it can be collected, stored, analyzed and securely transmitted for additional use. For more information on this topic, please visit Venafi.

IoT 85

IoT Authentication Manufacturing Digital transformation 85

Security Boulevard

MARCH 31, 2023

Join us for this month’s live webinar where Matt Bromiley, our Lead Solutions engineer, will be discussing LimaCharlie's detection and response capabilities. Link to the technical doc: Elastic Output Microsoft User Authentication updates coming soon We are making a change to our Microsoft SSO on March 22, 2023.

Data collection 59

Data collection Engineering Education Authentication 59

Cisco Security

AUGUST 26, 2021

Active Lock protects individual files by requiring step-up authentication until the threat is cleared. There are many options for step-up authentication, including Cisco Duo OTP and push notifications. Also have a look at a webinar recording about the D3E technology here. [2] Read more here. Read more here.

Technology 143

Technology Firewall VPN Authentication 143

Security Boulevard

OCTOBER 4, 2024

Protect all accounts that offer multifactor authentication (MFA) with this security method. Specifically, they’re encouraging people to: Boost their password usage by using strong passwords , which are long, random and unique, and using a password manager to generate and store them. Keep all your software updated.

Cybersecurity 69

Cybersecurity CISO Ransomware Technology 69

CyberSecurity Insiders

JUNE 15, 2021

He will also present methods for defeating these attacks, including patternless detection and unified risk analysis of authentication and access across on-premises and multi-cloud environments. WHERE: This webinar is accessible online with confirmed registration. WHEN: Tuesday, June 22, 2021 at 1:30 pm MDT.

Big data 52

Big data Accountability Technology Authentication 52

Responsible Cyber

JULY 13, 2024

You will learn how to: Prevent hacking and phishing attacks by using secure wallets and enabling Multi-Factor Authentication (MFA). Recognize and avoid social engineering scams by educating yourself on common tactics. Mitigate smart contract vulnerabilities through thorough research and independent audits.

Cryptocurrency 52

Cryptocurrency Cyber Attacks Social Engineering Scams 52

Duo's Security Blog

OCTOBER 20, 2021

Passwordless authentication is one of the biggest trends in security this year. We truly believe that passwordless authentication will be a sea change that simultaneously enables stronger security while making it easier for users to login. Naturally, at Duo we believe in the power of multi-factor authentication.

Education 52

Education Authentication Passwords CISO 52

Chicago CyberSecurity Training

JULY 1, 2023

Use Strong Passwords and Multi-Factor Authentication (MFA): One of the most important steps to securing your business is to use strong pass phrases for your accounts. Be sure to avoid passphrases that may include information that can be easily gathered about you via social engineering. Avoid using pass words (ex.

Cybersecurity 40

Cybersecurity Backups Social Engineering Passwords 40

NopSec

FEBRUARY 15, 2017

What if the recipient is in a hurry and under a lot of stress – will they be aware of how sophisticated and authentic-looking a well-crafted whaling attack can be? How Phishing Works: Social Engineering The term “phishing” is broadly defined as sending an email that falsely claims to be from a legitimate organization.

Phishing 40

Phishing Social Engineering Engineering Healthcare 40

Security Boulevard

DECEMBER 20, 2024

on-demand webinar) Harden Your Cloud Security Posture by Protecting Your Cloud Data and AI Resources (blog) 10 Considerations for Securing Stateful Persistent Volumes Attached to Kubernetes Pods and Applications (white paper) 2 - Feds: North Korea plants IT workers to commit fraud in the U.S. x Benchmark v2.1.1

Cybersecurity 52

Cybersecurity Government Internet Internet 52

Security Boulevard

JULY 30, 2021

Cloud authentication logs?). Recent SANS Webinar on Detection. Naturally, knowing the attacker goal is useful, because this may point at the types of telemetry you’d use to detect them and from what parts of the environment (Database logs? Application traces? Frankly, this is much more nuanced IRL. More to come!

Threat Detection 64

Threat Detection Authentication Engineering Cybersecurity 64

Duo's Security Blog

NOVEMBER 9, 2020

That's why earlier this year, Datto, the world's leading innovator of MSP delivered IT solutions, partnered with Duo Security’s Managed Service Provider (MSP) Program to implement one of the most important resources for advanced secure access —two-factor authentication, or better known as 2FA or MFA.

Data breaches 40

Data breaches Passwords Authentication Architecture 40

Security Boulevard

DECEMBER 6, 2024

this week in a joint document that offers network and communications-infrastructure engineers recommendations for strengthening network visibility and hardening systems. So said cyber agencies from Australia, Canada, New Zealand and the U.S. The Corvus ransomware report also found that five ransomware groups RansomHub, PLAY, LockBit 3.0,

Cybersecurity 64

Cybersecurity Ransomware VPN Software 64