In This Section

PINDROP BLOG

Category: Authentication

April 14, 2016
Bill Requiring Phone Crypto Backdoors Dies in California Assembly
A California bill that would require backdoors in phone encryption has died in the state assembly after failing to gain enough support to move out of committee. The bill, proposed in January, would have required that device manufacturers have the capability of decrypting and unlocking any phone sold in California after Jan. 1, 2017. A…
Read More →
April 14, 2016
Final Draft of Burr-Feinstein Bill Called ‘Dangerous’
The final version of a proposed bill that would require vendors to have a method for providing plaintext data to law enforcement agencies has been released, and privacy advocates and legislators are calling it “flawed” and “dangerous”. The Burr-Feinstein bill has been making the rounds of Capitol Hill in draft form since last week, and…
Read More →
April 13, 2016
Facebook Releases Account Kit SDK for Authentication Without Passwords
Facebook has released a new SDK called Account Kit that enables app developers and site owners to provide a login experience without passwords. The new system, which the company announced at its developers’ conference yesterday, uses Facebook’s own infrastructure to perform authentication via SMS and email. Account Kit doesn’t require that users have a Facebook…
Read More →
April 11, 2016
WordPress Turns on Encryption for 1 Million Sites
The movement to encrypt as much of the public Web as possible has gotten a major boost, as WordPress has turned on HTTPS connections for all of the more than one million custom domains hosted on WordPress.com. The change happened on Friday and significantly, it doesn’t require any work on the part of the site owners.…
Read More →
April 8, 2016
FBI Says Fake CEO Email Scam Losses Hit $2.3 Billion
The FBI says it has seen a huge increase in the volume of business email compromise scams hitting enterprises in the last year, and estimates that losses from the scheme have hit $2.3 billion now. Like normal phishing scams, these kinds of attacks rely on highly believable messages and a healthy dose of social engineering…
Read More →
April 7, 2016
On the Wire Podcast: Jessy Irwin
Jessy Irwin of 1Password returns to the podcast to talk with Dennis Fisher about the conclusion, at east for now, of the Apple-FBI case, the consequences of the outcome, the continued push for encryption in many communications channels, and the need for better security communications from vendors. Then the conversation turns to password policies and…
Read More →
April 5, 2016
How a Data Breach Pushed Duke University Into the Two-Factor Authentication Era
ORLANDO–One of the few topics that it is relatively easy to get consensus on in the security community is that passwords have outlived their usefulness as a standalone means of authentication. Two-factor authentication, in various forms and factors, has become the main way to fix this, but getting users and management to buy into the…
Read More →
April 4, 2016
Attackers Target Medical Devices, But Do Nothing Once They’re In
ORLANDO–Medical devices have become the new go-to example whenever someone wants to illustrate just how bad security is. And for good reason. These devices often run on Windows XP, have hardcodes passwords, haven’t been patched since the George W. Bush administration, and are reachable over the Internet. That’s not how any of this is supposed…
Read More →
April 4, 2016
How the Focus on Technology is Undermining Security
ORLANDO–It’s accepted as fact that many of the compromises and data breaches that make headlines and cost CSOs their jobs are accomplished through the use of known vulnerabilities and old techniques. These problems are fixable, but throwing money and technology at them is not the right answer, experts say. The security industry is experiencing an…
Read More →
March 31, 2016
Wyden: ‘Plans to Weaken Strong Encryption Are a Double Loser’
Sen. Ron Wyden, who has been perhaps the most outspoken legislator on the topic of encryption, privacy, and government intervention in technology, said he will “use every power I have as senator” to prevent lawmakers from passing laws that weaken encryption. Wyden (D-Ore.) spoke Tuesday at RightsCon, a conference on digital rights and privacy, and…
Read More →
Introducing Pindrop® Express – Authenticate without compromise.