I have been saying for some time now that passwords by themselves are no longer an effective form of security. Too easy to hack, too easy to crack. Currently my go to recommendation is any form of two-factor authentication. Something like the Google Authenticator App or Yubikey are good choices for your second authentication factor.
On the horizon there are other authentication options that may replace passwords entirely. Here are a few:
If you bought a security camera, webcam, baby monitor, smart doorbell, digital video recorder or other IoT device manufactured in China, there is bad news. Security flaws have been discovered that can easily allow an attacker remote access, remote control, and password discovery on affected systems. These devices can also be hijacked to use in a variety exploits including eavesdropping through ...
A quick Saturday digest of cybersecurity news articles from other sources.It’s Star Wars Day!! May the force be with you. Jedis, Greys, and Sith unite for a day for video watching and beer.
You might want to check your free space on your C drive before Patch Tuesday ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.Check this out from the Simple Dollar. Tax-related identity theft is a growing problem in America, and the more security breaches, information hacks and digital business we do as a society, the more consumers who fall victim to it. In fact, in 2016 alone, thieves stole more than $21 ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.It can be overwhelming to learn you’ve been a victim of identity theft. As in your case, crimes involving identity theft and credit fraud are often committed online.
There are other options for photo sharing ...
Continue Reading →I have been warning about the weakness of the password for a number of years. Passwords no longer provide strong security. Passwords are too easy to crack using automated techniques, and are stored insecurely in many environments. Most passwords are too short, or easily guessable. Many users reuse the same password on multiple sites. But the password remains the most popular form of authentication among most users. Two-factor and multi-factor authentication ...
A quick Saturday digest of cybersecurity news articles from other sources.More disconcerting news for router owners – a new assessment of 28 popular models for home users failed to find a single one with firmware that had fully enabled underlying security hardening features offered by Linux.
CITL (Cyber Independent Testing Laboratories) says it made this unexpected discovery after analysing firmware images from Asus, ...
Continue Reading →
Have you ever wondered why the state of cybersecurity is so screwed up? Why is it so easy for bad actors and cyber-criminals to hijack systems and steal information? Would you be surprised to learn the answer is because we designed it that way? Computers, networks, operating systems and software were designed to work together as easily as possible, and were inherently “trusted” by each other. In the beginning, most systems ...
Do the web sites your frequently visit offer two-factor authentication? Have you enabled 2FA where it is available to you? Is the particular implementation of 2FA or MFA security really adding any extra protection for you? Not sure? Please read on.
Password management company Dashlane recently ranked 34 of the top websites for their implementation of two-factor or multi-factor authentication options for their ...
Continue Reading →
Two-factor and multi-factor authentication historically have been based on using two or more of three criteria: something you know (passwords), something you have (security token) or something you are (biometrics such as fingerprints). There have been two new additions to MFA criteria: something you do (keyboard cadence or mouse movement), and somewhere you are (geo-location through GPS or public IP address).
Google has been busy heightening the security for it’s account holders ...
Continue Reading →