Viewing posts from January, 2009
password-on-post-it-note-reveals-affair
Posted by: admin 15 years, 3 months ago
According to ComputerWeekly's Downtime blog, a password on a post-it note allowed a temp to access email of a London mayor's office staffer, revealing an affair with a married woman. Downtime's take:
Downtime expects Ken to have already ordered a two-factor authentication scheme to protect those afflicted with short-term memory difficulties, banned 3M’s best-selling product and instructed HR to re-do the background checks to weed out anyone with a malicious sense of humour.
over-25-000-downloads
Posted by: admin 15 years, 3 months ago
I'm not sure if this confirms my argument that companies will switch to open source two-factor authentication during this downturn or not, but we have officially passed the 25,000 downloads mark from Sourceforge. That doesn't include downloads from our own website.
password-surveys-again
Posted by: admin 15 years, 3 months ago
Both RSA and Versign have done sponsored surveys on password usage and abusage by users. The first one - where they offered candy bars for passwords, was funny, but it is increasingly clear that these surveys are more about getting press than being scientific. Here are some hightlights from Verisign's survey:
pci-expanding-to-europe
Posted by: admin 15 years, 3 months ago
According to Security Fix Visa is going to enforce PCI DSS in Europe:
Visa Inc. on Monday dramatically expanded its credit and debit card security requirements to retailers in Europe, an unexpected move that could be a financial boon to security auditing companies, but a huge cost for European merchants already feeling the pinch from the global financial crisis.I'm fascinated that this is a surprise. My reaction was, "hmm I would have thought the PCI already applied in Europe".
phishers-exploit-weaknesses-in-certificate-process
Posted by: admin 15 years, 3 months ago
The Washington Post Security Fix points out how phishers are exploiting weakness in the certificate granting process to fool users.Recent Posts
- The latest WiKID version includes an SBOM
- WiKID 6 is released!
- Log4j CVE-2021-44228
- Questions about 2FA for AD admins
- WiKID Android tokens had their data deleted over the weekend by Google Chrome bug
Archive
2024
- January (1)
2022
- December (1)
2021
2019
2018
2017
2016
2015
2014
- December (2)
- November (3)
- October (3)
- September (5)
- August (4)
- July (5)
- June (5)
- May (2)
- April (2)
- March (2)
- February (3)
- January (1)
2013
2012
- December (1)
- November (1)
- October (5)
- September (1)
- August (1)
- June (2)
- May (2)
- April (1)
- March (2)
- February (3)
- January (1)
2011
2010
- December (2)
- November (3)
- October (3)
- September (4)
- August (1)
- July (1)
- June (3)
- May (3)
- April (1)
- March (1)
- February (6)
- January (3)
2009
- December (4)
- November (1)
- October (3)
- September (3)
- August (2)
- July (5)
- June (6)
- May (8)
- April (7)
- March (6)
- February (4)
- January (427)
2008
- December (1)
Categories
- PCI-DSS (2)
- Two-factor authentication (3)
Tags
- wireless-cellular-mobile-devices (7)
- Two-factor authentication (10)
- Wireless, cellular, mobile devices (6)
- NPS (1)
- Phishing and Fraud (111)
- Active Directory (1)
- pam-radius (3)
- privileged access (2)
- Cloud Security (10)
- Mutual Authentication (60)
- Web Application Authentication (1)
- Authentication Attacks (99)
- pci (50)
- Security and Economics (97)
- WiKID (133)
- pam (2)
- VPN (1)
- Installation (2)
- RADIUS Server (1)
- Open Source (64)
- Tutorial (2)
- Strong Authentication (35)
- Information Security (137)
- Transaction Authentication (13)
- Miscellaneous (100)
- Linux (2)
- transaction-authentication (6)
- Two Factor Authentication (254)