In the last couple of weeks we have read about two new security issues with Apple’s OSX operating system. The first was about a new threat named “CORED” or “XARA” (for Cross-App Resource Access). In this exploit a rogue app on the App Store could use the elevated privileges of another installed app to execute malicious code at a higher level ...
One of the relatively easy ways to create longer, stronger, more complex, and totally unique passwords for all your online accounts is to use a password manager service. Some of the more popular ones include RoboForm, KeePass, and LastPass. These services create unique bits of gibberish for each site, and automatically apply them to ...
We have been relying on the trusty password for years, but as password cracking technologies improve, even longer and more complex passwords are being solved and sold on rainbow tables. So passwords are for the most part over. Two factor authentication is possibly a solution, but biometrics are becoming a big part of what is next in the field of user authentication. We have already seen fingerprint scanners on some ...
If you are on LinkedIn, as I am, today is a good day to change your password. It seems that about 6.5 million LinkedIn usernames an password have found their way onto a Russian cyber-crime website. While LinkedIn initially disputed the report of security researcher Per Thorsheim, they recently admitted that they had lost control of some users’ credentials and
Continue Reading →
Windows 10 will be featuring a built in security feature called Hello, as well as Passport, for online security, and is supporting the FIDO Alliance as well. Hello will use fingerprint, facial recognition or iris scanning to authenticate you to your computer, and from there, authenticate you to your domain or workgroup resources. The facial recognition camera ...
As the age of password authentication falls to newer and faster password cracking hardware, software, and list building tools, technologists have been looking at other authentication methods. Many of these techniques we have covered here: two-factor authentication (2FA), secure key, smartphone authentication apps, Google’s USB security dongle, fingerprint readers, and other biometrics.
Recently, Samsung, together with SRI, have started working on an iris recognition authentication methodology called IOM or “Iris On the Move.” The human iris, the colored part of the eye, ...
Continue Reading →Two Factor Authentication, also known as 2FA or TFA, is becoming an attractive, and more available option to using just a user name and password combination as your only online security. Here’s why.
Typical security systems rely on some subset of the authentication triad: something you know, something you have, or something you are. Simple security methods rely on having one of the three. This is the problem with simple security – an attacker simply needs to acquire the one bit ...
Continue Reading →