Yubico is hoping to give its customers more confidence in its security solutions. To that end, the company has officially submitted its YubiKey 5 Series firmware to the Cryptographic Module Validation Program (CMVP) for FIPS 140-2 Overall Level 2 (and Physical Security Level 3) certification. The decision was made after the firmware was vetted by…
Spurred by an increase in online transactions due to COVID-19, Virginia-based fraud prevention platform NS8 has announced it has raised $123 million in a funding round led by Lightspeed Venture Partners, and with participation from AXA Venture Partners. NS8 monitors user behavior factors such as how quickly they navigate between pages, how many times a…
“It’s the latest indication of Google’s enthusiasm for 2FA security…” iPhone and iPad users can now secure their Google apps with Yubico’s Two-Factor Authentication solutions. The functionality arrives with Google’s support for the WebAuthn authentication protocol on iOS, Apple’s mobile operating platform. This means that users of Apple’s mobile devices can now enable their Google…
Google has announced that its Nest line of smart home devices are the latest addition to its Advanced Protection Program. Launched in 2017, the Advanced Protection Program gives users who register for it added account security to protect them from third party attacks like malware. The program also supports the use of physical security keys…
An investigative report from the website Bellingcat has found that the beer-rating social app Untappd can be used to identify military personnel and track the locations they’ve visited. The app works by having users ‘check-in’ whenever they are drinking a beer, whether it be at home or out at a bar or restaurant. Users are…
Appdome has officially become the latest member of the Microsoft Intelligent Security Association (MISA). The company is best known for developing a no-code solution that makes it easier for organizations to integrate security features – including the Microsoft Intune APP SDK – into their existing apps. Joining MISA should only improve the utility of the…
Onfido broke down some of the strengths and weaknesses of different kinds of two-factor authentication (2FA) in a new post on the company blog. The company notes that any form of 2FA will offer more protection than a password alone, but goes on to argue that knowledge and item-based forms of authentication are more vulnerable…
Identité, a new user authentication and security company based out of Clearwater, Florida, has announced NoPass, its secure passwordless multi-factor authentication (MFA) solution. NoPass uses a three-factor authentication system that is compliant with all industry standards and comes equipped with a patented process known as Full Duplex Authentication (two-way). On websites that support NoPass, the…
Mastercard is offering free security assessments to small businesses in Canada. The initiative is specifically intended to support establishments that are conducting more business online due to the social distancing requirements associated with COVID-19. In that regard, Mastercard notes that many smaller businesses are scrambling to introduce new online services, and may not be prepared…
HID Global has teamed up with Keyfactor, bringing its IdenTrust digital certificates to the latter’s Keyfactor platform. The latter is designed to allow administrators to track and manage digital certificates across the enterprise. Such digital certificates are used to establish trusted connections between a user’s computer or browser and the servers or sites that they…
With signs that online banking fraud is on the rise amid the COVID-19 pandemic, Buguroo is offering to investigate suspicious messages for free. The company has set up a new “Covid-19 Online Banking Fraud Resources Center” on its website, where it promises to offer regularly updated information about the latest fraud and social engineering campaigns.…
Trusona has added a Time-based One-time Password (TOTP) feature to its passwordless security portfolio. The enterprise solution will enable two-step verification to provide a higher level of security for people logging into various work-related applications. The TOTP feature is compatible with virtually any platform that supports two-step verification, including Google, Slack, and Amazon Web Services.…
Yubico is trying to help government agencies adapt to the unexpected security demands of a remote work environment. The company specifically cited the US government’s Personal Identity Verification (PIV) and Common Access Card (CAC) credentials, which are typically issued through an in-person identification and authentication process. Unfortunately, the COVID-19 pandemic has forced many agencies to…
Epic Games has made two-factor authentication a mandatory requirement for anyone looking to pick up a free game on the Epic Games Store in the next few weeks. The feature was implemented on April 28 to encourage gamers to adopt better security practices on their accounts with the online store. The news makes Epic the…
RSA is urging financial institutions to take an omni-channel approach to fraud prevention. In a new blog post, the company notes that people can now log into their accounts through multiple different channels using many different devices, and financial institutions need to ensure that all of those channels are protected if they want to guarantee…
Identity Automation has released an updated version of its RapidIdentity identity and access management (IAM) solution. The update is the company’s first release of 2020, and will introduce a slew of new features and general performance improvements. One of the most noteworthy features is a password blacklist, which prevents the use of any password that…
Security experts are advising gamers to implement two-factor authentication for their Nintendo accounts in response to a recent string of fraudulent attacks. The scam takes advantage of the fact that people can link their PayPal account to their Nintendo account to make purchases on the Nintendo Switch. The feature gives players a more convenient way…
Thales is the latest organization to warn about the rising threat of cyberattacks during the COVID-19 pandemic. The company observed that the transition to remote work has created security gaps that cybercriminals are now trying to exploit. The concerns echo those of security specialists like Yubico and BioCatch, which have already noted that people have…
The FIDO Alliance Korea Working Group is moving forward with its second annual FIDO Hackathon. The 2019 Hackathon was set up to promote FIDO protocols in South Korea, and to help support the local development community. The 2020 Hackathon will continue to advance those goals, though the Working Group has made several changes to the…
