Identity & Access December 16, 2022

The Cybersecurity Takeaway from Twitter’s Verification Chaos

4 min read - Twitter has been verifiably bonkers since electric car and rocket mogul Elon Musk took over and reworked the social network’s long-standing verification system. This provides a valuable lesson about the link between verification or authentication and between security and usability.…

Identity & Access October 20, 2022

How to Keep Your Secrets Safe: A Password Primer

5 min read - There are two kinds of companies in the world: those that have been breached by criminals, and those that have been breached and don’t know it yet. Criminals are relentless. Today’s cyberattacks have evolved into high-level espionage perpetrated by robust…

News February 2, 2022

Over 1,200 Phishing Kits Found in the Wild With Ability to Steal 2FA Codes

2 min read - Academics discovered more than 1,200 phishing kits equipped with the ability to intercept users’ two-factor authentication (2FA) codes in the wild. Two Types of 2FA Phishing As noted by researchers from Stony Brook University sponsored by security firm Palo Alto…

Mobile Security July 20, 2021

How to Fix the Big Problems With Two-Factor and Multifactor Authentication

3 min read - Getting a second opinion is a great idea in both medicine and end-user cybersecurity. Two-factor authentication (2FA) and multifactor authentication (MFA) are powerful tools in the fight against all kinds of cyberattacks that involve end-user devices and internet-based services. There’s…

Mobile Security May 5, 2021

Does Multifactor Authentication Keep Your Remote Workers Safe?

4 min read - Your eight-character password can be cracked in about eight hours, using brute force attacks — even if you add in numbers, mix up the cases and throw in a special character or three. Odds are high that eight-hour window will…

Endpoint February 12, 2021

Beyond Text Messages: How to Secure 2FA Against Phone Authentication Scams

3 min read - If you or your employees access protected information with authentication codes sent to a cell phone, you might want to rethink your plan. Two-factor authentication (2FA) using text messages can fall prey to phone authentication scams. That’s not to say…

Advanced Threats July 17, 2020

#TwitterHack: Power, Privilege and Pandemic

4 min read - On Wednesday, July 15, the Twitterverse was ablaze with what Twitter itself has described as a “coordinated social engineering attack” that was launched at around 4pm ET. The outcome of this breach was compromised Twitter accounts of many well-known people…

May 27, 2020

Discord Client Modified to Steal Users’ Plaintext Passwords

2 min read - Security researchers observed the "AnarchyGrabber3" malware modifying the Discord client to steal its victims' plaintext passwords.

May 26, 2020

New Android Malware Channels Malicious Activity Through Accessibility Services

2 min read - Security researchers uncovered a new Android malware strain called "DEFENSOR ID" that channels its malicious activity through a device's Accessibility Services.

May 11, 2020

Weekly Security News Roundup: Dacls RAT Begins Targeting Mac Users

3 min read - Security researchers observed a new version of the Lazarus Group's Dacls RAT targeting Mac users via a trojanized 2FA app. Read on to learn what else happened last week in security news.