Passwords - Security Intelligence

Woman accessing sensitive business applications using multifactor authentication

article

Beyond 2FA: Secure Your Critical Assets With Risk-Based Multifactor Authentication

Passwords have become an insecure and cumbersome form of authentication. Learn about risk-based multifactor authentication, an approach to access management that uses context to determine risk.

May 8, 2019 | By Diana Kightlinger

article

Woman checking social media on her smartphone while waiting for the subway: PII

article

Are Companies Doing Enough to Secure PII? I Spoke With Security Expert Frank Abagnale to Find Out

For the enterprise responsible for protecting customers' PII, should passwords be stored at all — even encrypted?

May 1, 2019 | By Mark Stone

article

Businessman entering a password and other data into a multifactor authentication system.

article

Long Live the Password — Even if You Don’t Want It To

To reduce the risk of a breach due to weak or stolen passwords, companies are adopting multifactor authentication, which requires users to submit an extra piece of data in addition to their password.

April 24, 2019 | By Dustin Heywood

article

Woman using her Android smartphone for Google 2FA process on laptop

news

Google 2FA Approach Turns Android Smartphones Into Security Keys

Smartphones running Android 7.0 and higher can now serve as two-factor authentication (2FA) tools as part of a Google 2FA strategy to boost security across its online services.

April 17, 2019 | By Shane Schick

news

Security professional investigating a credential dumping campaign.

article

Credential Dumping Campaign Hits Multinational Corporations

X-Force researchers observed attackers targeting multinational corporations in various sectors using malicious scripts to automate attacks on misconfigured servers.

April 9, 2019 | By Thanassis Diogos

article

Businesswoman checking her email: brute-force attack

news

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

A massive brute-force attack campaign used both legacy protocols and credential dumps to compromise cloud user accounts, according to security researchers.

March 20, 2019 | By David Bisson

news

Diverse group of security professionals discussing a project: cybersecurity workforce

article

Creating Meaningful Diversity of Thought in the Cybersecurity Workforce

Let's add the diversity of approach, diversity of values and advocacy for deep customer empathy to the cybersecurity workforce diversity we are building.

March 20, 2019 | By Bill Bonney

article

Illustration of biometric security on a mobile phone

article

AI May Soon Defeat Biometric Security, Even Facial Recognition Software

Threat actors will soon gain access to artificial intelligence (AI) tools that will enable them to defeat multiple kinds of authentication systems, even biometric security.

January 31, 2019 | By Mike Elgan

article

Woman using a laptop and smartphone while looking at a credit card: multifactor authentication

article

Multifactor Authentication Delivers the Convenience and Security Online Shoppers Demand

When framed as an innovative, even "cool" feature, multifactor authentication can deliver the security online retail customers demand without diminishing the user experience.

January 21, 2019 | By Pier Luigi Rotondo

article

Man using a digital tablet to control IoT devices at home: mirai malware

news

New Variant of Mirai Malware Exploits Weak IoT Device Passwords to Conduct Brute-Force Attacks

Security researchers discovered a new variant of Mirai malware known as Miori that is targeting internet of things (IoT) devices to integrate into a larger botnet.

January 2, 2019 | By Shane Schick

news

Free Decryption Tool Enables Victims of GandCrab Ransomware to Recover Their Files

Outlaw Threat Group Using Botnet to Distribute Monero Miner, Perl-Based Backdoor

InterPlanetary Storm Malware Using IPFS P2P Network to Hide Its Activities

Threat Actors Use Targeted Attack Tools to Distribute Cryptocurrency Miners, Ransomware

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Critical RCE Vulnerability in TP-Link Wi-Fi Extenders Can Grant Attackers Remote Control

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Webinar: Under the Radar: IBM QRadar Demo Series

Webinar: Appliance Networking Topics

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Tag: Passwords

Beyond 2FA: Secure Your Critical Assets With Risk-Based Multifactor Authentication

Are Companies Doing Enough to Secure PII? I Spoke With Security Expert Frank Abagnale to Find Out

Long Live the Password — Even if You Don’t Want It To

Google 2FA Approach Turns Android Smartphones Into Security Keys

Credential Dumping Campaign Hits Multinational Corporations

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

Creating Meaningful Diversity of Thought in the Cybersecurity Workforce

AI May Soon Defeat Biometric Security, Even Facial Recognition Software

Multifactor Authentication Delivers the Convenience and Security Online Shoppers Demand

New Variant of Mirai Malware Exploits Weak IoT Device Passwords to Conduct Brute-Force Attacks