Following some high-profile password hacks, companies like Apple, Twitter and Evernote have moved to shore up their systems with two-factor authentication. Said to be a great missing security link in many password-driven systems, two-factor authentication technologies that are most widely used today are actually fraught with many of the same risks as password-driven systems.
If you’re considering two-factor authentication, you should consider some of the most common attacks, identified by Jim Fenton, CSO at digital identity provider OneID, on two-factor authentication. Of course, there are many more than five attacks in the world, but these should give a starting point for evaluating others. These examples illustrate the importance of thinking broadly about how two-factor authentication can be defeated. You can be assured that the attackers are doing so.
Security experts can take steps to bridge the gap and help to reinforce best practices among their colleagues. ... More >>
Classes are officially in session. What better time than the start of a new school year to brush up on your cloud security knowledge? ... More >>
The time has come to take shadow IT seriously and address the issue in a way that is inclusive to employees and meets the needs of the business. ... More >>