Two-Factor Takeover

April 24, 2013 by · Comments Off
Filed under: Authentication Security, Authentication Trends, Multi-factor Authentication, password security, Security Attacks, Security Awareness, Two-factor Authentication, Uncategorized 

In extension to our post last week stating that Apple is the latest to join in a trend that’s having more and more of the presently most influential companies adding enhanced security in the form of two-factor login to their accounts, we follow up this week with yet another.  Twitter will be joining the likes of Apple, Google, Facebook and Microsoft as they begin rolling out the feature in a short, but unspecified time from now.

It appears as though Twitter has had this project underway since at least early February, when they had posted a job position for the project.  It is likely no coincidence that the service had suffered a hacking attack in which 250,000 account passwords were compromised just the week before the job posting.  When just yesterday the Associated Press had also suffered a compromised account, in which bogus messages were tweeted, the need for the enhanced security is especially evident.

 

Source: The Wired

Source: Ars Technica

Tags: , , , , ,

WhiteHat’s Top Ten Web Hacking Techniques of 2012

January 18, 2013 by · Comments Off
Filed under: General Information, IT Security, Security Attacks, Uncategorized 

A list that everyone should read is a the Top Ten Web Hacking Techniques that WhiteHat puts out yearly. It is an amazing collection of the security industries findings on the hacking capabilities which are out on the web. Having been created for the last seven years the list points out attacks on various websites, browsers, proxies, and mobile platforms. The list is a collection with the goal of choosing the top ten new and most creative web-based attacks. The list also serves another purpose, awareness.

By collecting all of these attacks in one list it allows us to be aware of what is going on in the industry. As they say knowledge is power and by exposing these techniques you may be able to look at your organization and make changes to prevent attacks you didn’t even know were possible. Below are just some of the attacks which stood out. THe list is still being compiled so that WhiteHat can choose the Top Ten, but what an intense list it is so far:

  • Parasitic Computing Using Cloud Browsers
  • Hyperlink Spoofing and the Modern Web
  • Content Smuggling
  • Blended Threats and JavaScript
  • .NET Cross Site Scripting – Request Validation Bypassing
  • How Facebook Lacked X-Frame Options and What I Did With It
  • Bruteforce of PHPSESSID
  • And Many More…
View the full list of attacks…

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, transparent user authentication,  self-service password management, two-factor authentication, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Tags: , , , ,

Happy Thanksgiving to All Our Readers

November 22, 2012 by · Comments Off
Filed under: Uncategorized 

Tags: , ,

Why should you implement single sign-on?

November 13, 2012 by · Comments Off
Filed under: Authentication Security, compliance, password management, PortalGuard, Uncategorized 

There are many benefits to implementing a single sign-on solution.  A few keys reasons include reducing cost associated with multiple passwords, enhancing the user experience while increasing productivity, increasing security around a single point of access and simplifying auditing and compliance.  Read more…

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://www.linkedin.com/company/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

 

Tags: , , ,

Increase security around a single point of access with strong authentication

November 6, 2012 by · Comments Off
Filed under: Authentication Security, IT Security, PortalGuard, Uncategorized 

When you have a single password, you better make sure its secure!  Implementing strong authentication along with your single sign-on solution is a good way to secure your single point of entry to your enterprise.  Two-factor authentication increases security by requiring something you know – your password – and leverages something you have – say a mobile phone. Read more…

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://www.linkedin.com/company/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Tags: , ,

How many passwords are your users juggling?

October 23, 2012 by · Comments Off
Filed under: IT Security, password management, PortalGuard, Uncategorized 

Passwords for email, CRM, marketing automation, ERP, payroll, project management….  How many passwords are your users trying to manage?  And of those passwords, how many are scribbled on sticky notes and stuck to their laptop?!  Making bad decisions when managing multiple user names and passwords makes your security vulnerable.  Vulnerable security is not only costly, but can end in severe loss.  Find out more about this topic in PortalGuard’s webcast ‘The Cost and Loss of Not Using Single Sign-On with Two-Factor Authentication’.  Read more…

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://www.linkedin.com/company/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Tags: , ,

The Cost and Loss of Not Using Single Sign-On with Two-Factor Authentication

October 15, 2012 by · Comments Off
Filed under: Authentication Security, compliance, General Information, IT Security, password management, password security, PortalGuard, Uncategorized 

Do you know how much passwords are costing your organization?  Passwords are a much larger source of cost and loss than most people realize. Multiple passwords cost you not only hundreds of help desk calls annually, they also result in a loss of productivity and can be a source of severe loss of security.  Check out PortalGuard’s webcast on the cost and loss of not using single sign-on with two-factor authentication.  Read more…

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://www.linkedin.com/company/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Tags: , , ,

The Seven Deadly Sins of Information Security

September 27, 2012 by · Comments Off
Filed under: Authentication Security, Data Security, General Information, IT Security, password security, PortalGuard, Uncategorized 

The 7 Deadly Sins of Information SecurityBusinesses of all sizes spend time and effort on putting technologies in place to increase and enforce information security.  Having the technology in place is only part of the security puzzle.  Educating your employees on the benefits and necessity of the technologies is key to adoption.

According to research, based on 300 security breaches worldwide, as many as 87% of businesses that had been breached had not developed specific security policies – including security awareness education.

Does your enterprise have policies and education in place to ward off these seven deadly sins?

1. Passwords even my mom could guess – How many passwords are on sticky notes stuck to the keyboard?

2. Oh! Looky here – screen snoopers and creepers – 1 in 3 workers leave their workstations logged in and unlocked when they leave their desks.

3. I found a USB stick – lets see whats on it! – 60% of people that find a USB stick look to see whats on the drive.  Add a logo on to that stick and the percentage jumps to 90!

4. Phising! – Even the best of us can miss the telltale signs of a phishing scam.  Have you trained your team on these signs?

5. Anyone see my phone around? – 70% of users do not password protect their smartphone

6. I just found wifi! – only 18% of users log in to a VPN over public wifi

7. Yeah, I FaceBook at work – expect your social media policies to be violated

Read more…

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Tags: , , ,

SMBs May Not be Secure – Great Graphic!

August 10, 2012 by · Comments Off
Filed under: Uncategorized 

Here is a great graphic from TechRepublic

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Tags: , , , , , , , ,

University of North Florida

July 12, 2012 by · Comments Off
Filed under: Authentication Security, Authentication Trends, PortalGuard, Uncategorized 

A database containing 23,246 names of students who applied for university housing between 1997 and 2011 and their Social Security numbers may have been breached. The breach may have occurred spring of 2011. In October 2011, the university admitted to a data security breach that compromised personal information, including social security numbers, of more than 100,000 individuals. Read More…

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard/

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Tags: , , , , , , , , , ,

Next Page »