In This Section


Category: Authentication

April 3, 2017
Researchers Tie Bank Attacks to North Korea
ST. MAARTEN–New details discovered in the investigation into the string of attacks on banks around the world using the SWIFT network show have linked the intrusions to attackers based in North Korea. Separate research conducted by experts at SWIFT, Kaspersky Lab, and BAE Systems uncovered a trail of clues that, taken together, point to North…
Read More →
March 31, 2017
Highly Effective Phishing Attack Targets Corporate Travelers
Attackers are using the lure of airline reservations as part of a highly effective phishing campaign that researchers say is successful about 90 percent of the time. The campaign targets corporate victims, and the attackers behind it seem to be doing quite a bit of research before sending the phishing emails. The messages are constructed…
Read More →
March 29, 2017
Amazon Adds Pindrop for Security of Connect Call Center Service
The call center has become a key entry point into many organizations for fraudsters and cybercriminals, and enterprises have discovered that protecting that channel is not the same as defending a corporate network. The phone channel has its own unique traits and peculiarities that make it a challenge for security teams, particularly the involvement of humans…
Read More →
March 27, 2017
iOS 10.3 Fixes Dozens of Serious Flaws
With the release of iOS 10.3 today, Apple has patched more than two dozen vulnerabilities that could lead to arbitrary code execution in a new release of iOS. Many of the code-execution bugs are in the iOS kernel and several others are in the FontParser component of the operating system. Among the kernel vulnerabilities, there…
Read More →
March 27, 2017
Another Critical Bug Hits LastPass
A few days after LastPass released a fix for some critical security flaws in its extensions for Chrome and Firefox, a researcher has identified a new vulnerability in the browser extension that allows an attacker to get full code execution on a target machine. The details of the new bug are not public yet, but…
Read More →
March 23, 2017
Android Trojan Spreads Through Fake Cell Towers
Attackers in China are using rogue cell base stations to spread versions of an Android banking Trojan that steals user credentials and has the ability to bypass two-factor authentication. The malware, known as the Swearing Trojan for some impolite language found in the Chinese code, has been in circulation for several months and uses a…
Read More →
March 13, 2017
Google Steps Up Security on G Suite and Cloud Platform
Google has rolled out several new security features for its G Suite and Google Cloud Platform, including a DLP system that finds and redacts sensitive data, and a service that allows organizations to manage the lifecycle of encryption keys. Users of Google’s hosted apps are reliant on the company for the security and privacy controls,…
Read More →
March 7, 2017
Nest Adds Two-Step Verification for Users
Nest, maker of smart home thermostats and other devices, is adding two-step verification to its authentication process, making it more difficult for attackers to take over users’ devices. The company said on Tuesday that it is implementing the ability for users to require a short code sent by SMS as part of the sign-in process…
Read More →
February 14, 2017
Cryptographers Question the Promise of AI, Machine Learning in Security
SAN FRANCISCO–Artificial intelligence and machine learning are the two dominant buzzphrases at the RSA Conference this year, but some of the founding fathers of the security community are questioning how much use those technologies will be for security. “I’m actually skeptical that there will be much impact on security from AI,” Ron Rivest, a professor…
Read More →
February 2, 2017
Google Adds New Protections to G Suite
OAKLAND–Google is making a pair of changes to its hosted G Suite Gmail service for enterprises to enhance the security of the service. The most significant change is the addition of hosted S/MIME encryption. This will allow enterprise customers to get the benefits of secure email without having to deal with all of the challenges…
Read More →
Pindrop® Panorama: Beating the Balancing Act of Security and Customer Service