Entrust Identity On: Latest Posts
There is an industry myth that certification authorities (CAs) are not regulated. In fact publicly-trusted SSL CAs support the development of industry regulations and have been audited annually to ensure compliance to the many requirements.
The PayPal information risk management team warns that the introduction of new generic top-level domains, or gTLDs, could impact security
Inside a Twitter Attack: How Hijacked Twitter Accounts are Falling Victim to Digital Theft, Influencing Global Markets
Recently, we have seen a rash of high-profile takeover attacks on Twitter accounts. These Twitter attacks are targeting Western news organizations, but some organizations outside of the news realm (e.g., Burger King) have also come under attack.
Website owners who have mixed-content pages will surely be impacted and should make changes. Along with Firefox, Internet Explorer, Chrome and Opera already block mixed content. This means the users of the site will get trust warnings or the browser’s security indication (i.e., lock icon) may not be present.
Malvertising — or malicious advertising — is getting a bit more attention as of late. In essence, it’s just another method by which criminals attempt to infect user PCs with some form of malware — albeit a very scary form as it can reach so many users so easily. The important point is that criminals [Read More...]
The AP Twitter hack lead to a sudden drop in the Dow Jones Industrial Average after the perpetrators sent out a tweet about an attack on the White House
I recently read an interesting article by Ericka Chickowski, “Facebook vs. Salesforce: An Identity Smackdown?” at Dark Reading.
GRC has created HTTPS/SSL Fingerprints. This service allows you to check whether or not your enterprise is performing MITM on the SSL secured site that you are trying to reach. It compares the certificate fingerprint to what you would receive to the fingerprint that they receive by going direct. If they are the same, the certificate is authentic and you have no problem. If they are different, then it is likely that someone is performing MITM on your SSL connection.
Bill Conner, KRLD’s David Johnson Discuss Threats, Going Private & Government’s Involvement in Private Security
Entrust President and CEO Bill Conner went to the airwaves to chat with David Johnson, of KRLD AM 1080, for a CEO Spotlight segment. Their discussion focused on three primary topics: the changing threat landscape, risks and challenges of going private and government involvement in private-sector cybersecurity.
Building on an already robust suite of mobile solutions , Entrust just announced version 2.0 of our Mobile Smart Credential. This new release includes a few very cool features that help organizations deploy stronger, more effective security controls and improve the end-user experience. This makes security that is simple rather than a frustrating barrier that gets in the way of business.