State-of-the-art multifactor authentication (MFA) technologies

Enterprises authenticate users based on their knowledge, possession, or inherence of some evidence that they are the party with the given right of access. Some experts see the context of the user’s authentication such as the time, their network IP and device, and their location as the fourth factor of authentication. Stephen Cobb, senior security researcher at ESET says you can assure greater security with each additional factor of authentication…

April 27, 2017
Read More >>

Next-gen IoT botnet Hajime nearly 300K strong

The Hajime botnet is nearly 300,000 strong, making it a latent threat nearly as powerful as the notorious Mirai botnet that devastated high-profile websites last fall, leading some to think the internet had been broken. Researchers at Kaspersky Lab lured devices infected with the Hajime worm to announce themselves to a Kaspersky honeypot, checked out whether they were actually infected and added them up. They came up with the number…

April 27, 2017
Read More >>

IDG Contributor Network: The state of privacy and security in an ever-evolving world

Privacy and security have evolved. We are seeing various breaches that are devastating organizations across many industries. How can you secure your data in a world full of mobile devices, IoT,and the cloud? I attended the 2017 RSA Conference in San Francisco to dive into the problems organizations are currently facing in the information security world and to discover the latest industry innovations. Here’s a recap of some of the…

April 27, 2017
Read More >>

Latest OWASP Top 10 looks at APIs, web apps

The new release of the OWASP Top 10 list is out for public comment from the Open Web Application Security Project, and while most of it remains the same there are a couple of new additions, focusing on protections for web applications and APIs. To make room for the new items, a couple of older ones were either removed or merged into new items. The fact that the list hasn’t…

April 27, 2017
Read More >>

Present and future ransomware tactics model the past

Ransomware expert Andrew Hay has some advice: If you want to know how to avoid it now and in the future, it helps to study the past. In that spirit, Hay, cofounder and CTO at LEO Cyber Security, provided a detailed historical landscape of K&R (kidnap and ransom) in his talk titled “The Not-so-Probable Future of Ransomware” at SOURCE Boston 2017 on Wednesday. While ransomware holds information rather than people…

April 27, 2017
Read More >>

10 ways CSOs can achieve ROI on a network solution

Measuring ROI Image by Thinkstock With the advent of Bring Your Own Device (BYOD), WLAN network access to customers and visitors and virtualized systems, the demand for IP addresses has exploded. Small companies might have to manage more than 1,000 IP addresses and it is not unusual for larger companies to have 10,000 or more spread across many locations. Setting up and protecting the network infrastructure is a major challenge and needs…

April 27, 2017
Read More >>

BlackBerry KeyOne to launch in US and Canada in late May

The BlackBerry KeyOne, an Android-based smartphone with a hardware keyboard, will be available in the U.S. and Canada from May 31, the phone’s maker said Thursday. TCL Communications, the Chinese company that acquired rights to produce BlackBerry-brand handsets, originally had said the phone would go on sale in April, so the delay may disappoint potential users. This could be a bad time to test the patience of potential buyers, as…

April 27, 2017
Read More >>

XMR Squad Is Charging German Companies €250 for “DDoS Tests”

A group calling itself XMR Squad has spent all last week launching DDoS attacks against German businesses and then contacting the same companies to inform them they had to pay €250 ($275) for “testing their DDoS protection systems.” View full story ORIGINAL SOURCE: Bleeping Computer The post XMR Squad Is Charging German Companies €250 for “DDoS Tests” appeared first on IT SECURITY GURU. Source: http://www.itsecurityguru.org

April 27, 2017
Read More >>