As hackers got better, so did developers. Multi-Factor authentication, a technique which requires something that you know, like a password and something that you have, like an SMS message on your phone, makes the lives of crooks harder, but far from impossible to attack and here is why. One way this is done is via […]
Continue reading → [DISPLAY_ACURAX_ICONS]Microsoft Considering Buying TikTok In light of President Trump’s threats to ban TikTok, Microsoft says that it is considering buying the company from its Chinese owners. That would be a win-win-win for Microsoft. They would add another social media platform to their inventory. The can probably buy it at fire sale prices and they would […]
Continue reading → [DISPLAY_ACURAX_ICONS]Dial back your wayback machine to September of last year. Capital One announced a hack of their Amazon environment by an ex-Amazon employee the previous July that was possible to due an incorrect configuration of their security settings. Fast forward to today and the feds announced an $80 million fine for bad cloud hygiene. The […]
Continue reading → [DISPLAY_ACURAX_ICONS]If you didn’t know better you would think the NSA is trying to turn over a new leaf. Credit Anne Neuberger. A couple of years ago the NSA dissolved the Information Assurance Directorate – the group that helps the good guys. To me, this was an incredibly stupid move on the part of the NSA. […]
Continue reading → [DISPLAY_ACURAX_ICONS]There are an amazing number of misconfigured Amazon S3 buckets. I have no clue why. No company should be in this boat any more. Truffle Security said that a team of there security pros STUMBLED across about 4,000 of them. What was in them? Login credentials – not great. Security keys – even worse. API […]
Continue reading → [DISPLAY_ACURAX_ICONS]