GitGuardian reported yesterday that organizations leaked more than 6 million passwords, API keys and other secrets last year. That is just in the code that they scanned. This is double the number found the year before. In part, this is due to better software that can sniff out these secrets. That translates to 3 out […]
Continue reading → [DISPLAY_ACURAX_ICONS]Scammers Figure out How to Fake Out Facial Biometrics Multi-factor authentication is not magic. For the most part, it is software. And if software is not well written, it can be fooled. That means that we should not be surprised if scammers try to use deep fakes and other techniques to fool automated facial recognition. […]
Continue reading → [DISPLAY_ACURAX_ICONS]Missouri Prosecutor Wisely Decides Governor is not Tech Smart Remember when the governor got his feeling hurt after a St. Louis newspaper revealed that the education department’s website was publishing the PII of tens of thousands of teachers and asked the Highway Patrol to prosecute the reporter who embarrassed him? The PII was, as a […]
Continue reading → [DISPLAY_ACURAX_ICONS]When hackers are faced with multi-factor authentication, they look for another weak spot – often it is the human being. For example, Office 365 users are being bombarded with push notifications requesting access. After a while they just say yes to make it stop. Now the researchers have given it a name – Multi-factor authentication […]
Continue reading → [DISPLAY_ACURAX_ICONS]I just watched a DoD town hall on their current thoughts on CMMC 2.0. Here are some of the highlights: CMMC 2.0 has been stripped down to NIST SP 800-171 (we already knew that) DoD has already had several meetings with NIST about adding (at least some of) the things that were in CMMC 1.0 […]
Continue reading → [DISPLAY_ACURAX_ICONS]Google Decreased Account Takeovers by 50% by Mandating 2FA Late last year Google forced about a hundred fifty million users to start using multi-factor authentication. What results did they see? Account takeovers in that group were reduced by 50%. Google has previously said that only 10% of their users were using MFA. Now they are […]
Continue reading → [DISPLAY_ACURAX_ICONS]