Not All Multifactor Authentication Techniques are Equal
This fact seems to be lost on some who are responsible for security architecture. One of my reflections on this past summer is that not everyone is aware of the difference between weaker and stronger forms of multifactor authentication. You have likely read about multifactor authentication, have used it with your social networking websites, or [Read More...]
Entrust at RSA: “Is It You, Or Is It the Malware?”
Today at the RSA Conference, Entrust’s Jason Soroko is doing real-time, split-screen key-logging demos via Metasploit
Eurograbber Proves SMS Not Suited to Secure Bank Transactions
Last week, news was released that Eurograbber compromised user PCs and mobile SMS to execute financial fraud at 30 different banks across Europe.
Sophos Breach Tied to Partner Portal
Security Week reports in, “Sophos Kills Partner Portal After Suffering Breach” that the security firm Sophos has disabled its partner portal after discovering a breach. They aren’t saying much yet — kudos to them for their disclosure and response — but they think that the breach came from an older part of their portal, and [Read More...]