Authentication, Security and Social - Information Technology Zone

Are Your Firewalls and VPNs the Weakest Link in Your Security Stack?

Network World

OCTOBER 21, 2024

Zero Trust architecture was created to solve the limitations of legacy security architectures. Recent critical vulnerabilities in VPNs and firewalls have exposed the risks associated with perimeter-based security measures. Security requires an adaptive model that understands the fluidity and dynamism of the modern digital landscape.

Firewall

Firewall Security Architecture Strategy

How to defend your organization against social engineering attacks

Tech Republic Security

NOVEMBER 5, 2020

A security awareness program backed by multi-factor authentication can help protect your critical assets, says NordVPN Teams.

Engineering

Engineering Social Authentication How To

Cisco touts ‘Internet of Agents’ for secure AI agent collaboration

Network World

JANUARY 30, 2025

When AI agents begin to proliferate, a new, open structure will be needed so they can securely communicate and collaborate together to solve complex problems, suggests Cisco. Infrastructure agents from Cisco and Microsoft simultaneously validate security, identity and access, costs, and SLO compliance.

Internet

Internet Security Open Source IBM

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

When voice deepfakes come calling

CIO Business Intelligence

DECEMBER 18, 2024

Intro: Time was, a call center agent could be relatively secure in knowing who was at the other end of the line. And if they werent, multi-factor authentication (MFA), answers to security questions, and verbal passwords would solve the issue. A recent report found that fraudsters are not always trying to bypass authentication.

Authentication

Authentication Survey Video Social

‘Sneaky Log’ Microsoft Spoofing Scheme Sidesteps Two-Factor Security

Tech Republic Security

JANUARY 21, 2025

The phishing-as-a-service kit from Sneaky Log creates fake authentication pages to farm account information, including two-factor security codes.

Security

Security Authentication Microsoft Groups

Human firewalls: The first line of defense against cyber threats in 2025

CIO Business Intelligence

MARCH 14, 2025

But even as AI lends more attacking power to cyber criminals and cybersecurity professionals likewise incorporate AI into their threat-fighting arsenals , the single most powerful factor that can help fend off attacks is what was once the weakest link in security: human behavior. What is a human firewall?

Firewall

Firewall Malware Training Security

Chinese cyber espionage growing across all industry sectors

CIO Business Intelligence

MARCH 4, 2025

Security researchers are warning of a significant global rise in Chinese cyber espionage activity against organizations in every industry. It is highly likely that these investments have led to greater operational security (OPSEC) and specialization in China-linked intrusion operations, the researchers noted.

Industry

Industry Malware Groups Telecommunications

How cybersecurity red teams can boost backup protections

Network World

SEPTEMBER 18, 2024

Cybersecurity red teams are known for taking a more adversarial approach to security by pretending to be an enemy that’s attacking an organization’s IT systems. Let’s look at the tactics, strategies, and importance of red teams and the role they can play in enhancing the security of your backup system.

Backup

Backup Disaster Recovery Authentication Security

Global AI regulations: Beyond the U.S. and Europe

CIO Business Intelligence

NOVEMBER 21, 2024

China follows the EU, with additional focus on national security In March 2024 the Peoples Republic of China (PRC) published a draft Artificial Intelligence Law, and a translated version became available in early May. Lastly, China’s AI regulations are focused on ensuring that AI systems do not pose any perceived threat to national security.

Artificial Intelligence

Artificial Intelligence Guidelines Research Licensing

How to protect your business from email compromise – and be prepared if protection falls short

CIO Business Intelligence

OCTOBER 31, 2024

The attacks, in which criminals frequently leverage social engineering to impersonate company insiders, C-suite executives or trusted vendors to request urgent payments, can financially devastate organizations. It can be easy to fall victim to a BEC attack, especially for companies with limited resources and leaner teams handling payments.

Banking

Banking How To Financial Education

Architecting Identity: Five Essential Elements of a Modern Customer Authentication Service

CIO Business Intelligence

MAY 24, 2022

Traditional IAM, however, was built to manage internal employees, which means that the organization has control over connecting users to their real identities, birthright provisioning and device security. They may have a built-in user store supporting password authentication, for example. billion in losses.

Authentication

Authentication Security B2C Mobile

Chinese cyber espionage growing across all industry sectors

CIO Business Intelligence

MARCH 4, 2025

Security researchers are warning of a significant global rise in Chinese cyber espionage activity against organizations in every industry. It is highly likely that these investments have led to greater operational security (OPSEC) and specialization in China-linked intrusion operations, the researchers noted.

Industry

Industry Malware Groups Telecommunications

What you need to know about Okta’s security breach

CIO Business Intelligence

OCTOBER 25, 2023

On October 20, 2023, Okta Security identified adversarial activity that used a stolen credential to gain access to the company’s support case management system. Identity attacks use social engineering, prompt-bombing, bribing employees for 2FA codes, and session hijacking (among many techniques) to get privileged access.

Security

Security Authentication Policies Applications

Three Ways Banks Can Improve Identity Authentication and Customer Data Privacy

CIO Business Intelligence

OCTOBER 26, 2022

Digitalization is a double-edged sword for banks, especially when it comes to security. As interactions and transactions become more interconnected, even the simplest processes like opening a new account or making a balance transfer become riddled with security concerns. Avaya’s research report reveals three critical ways to do so.

Authentication

Authentication Banking Data Knowledge Base

Seven Signs That Your Consumers are Ready for Passwordless Authentication

CIO Business Intelligence

MAY 19, 2022

Customer demand for passwordless authentication has grown exponentially since smartphones first began offering built-in biometric readers. A staggering 93% of consumers preferred biometric authentication to passwords — and yet so many companies still force their customers to use risky, outdated login credentials. Your first clue?

Authentication

Authentication Survey Study Mobile

Document Security is More than Just Password-Protection

CIO Business Intelligence

OCTOBER 4, 2023

No matter what types of documents your business works with, securing those documents against adversarial attacks should be a top priority. The best software and tools are built with security in mind from the bottom up, not bolted on as an afterthought. Look into application protection. Provide access control.

Security

Security Disaster Recovery Malware Authentication

Compliance, security, and the role of identity

CIO Business Intelligence

JUNE 18, 2024

Every day, modern organizations are challenged with a balancing act between compliance and security. While compliance frameworks provide guidelines for protecting sensitive data and mitigating risks, security measures must adapt to evolving threats. Here are several ways identity functions help both security and compliance efforts.

Security

Security Authentication Government Data

Notre Dame scores big with Wi-Fi 6E stadium upgrade

Network World

FEBRUARY 10, 2025

University event personnel are able to leverage network data to improve crowd control and perform security monitoring. And from a security perspective, WPA3, which provides new authentication and encryption algorithms for networks, is a mandatory requirement for the Wi-Fi 6E network. But theres a catch.

Wireless

Wireless Network Groups Examples

How to implement zero trust device security

CIO Business Intelligence

MAY 24, 2024

The added demand for remote access to corporate applications driven by business continuity, customer reach, and newfound employee satisfaction comes with a heightened concern over data security. Most vendor offerings typically seek to address siloed segments, such as network or endpoint security, identity, or data security.

Security

Security HP How To Authentication

Customer Passwords are a Target for Cybercriminals: How to Address the Threat

CIO Business Intelligence

MAY 5, 2022

However, cybercriminals commonly take the path of least resistance, and organizations’ reliance on password-based authentication provides numerous avenues of attack. Passwords are known to be a weak form of authentication, and the widespread use of weak and reused passwords puts companies and their customers at risk.

Authentication

Authentication How To Security Mobile

The cyber pandemic: AI deepfakes and the future of security and identity verification

CIO Business Intelligence

MAY 2, 2024

Security and risk management pros have a lot keeping them up at night. The era of AI deepfakes is fully upon us, and unfortunately, today’s identity verification and security methods won’t survive. And the only way to do this is to leverage advanced security technologies such as mobile cryptography.

Security

Security Authentication Operating Systems Artificial Intelligence

S&R Forum 2021: Passwordless Authentication Adoption Is Gaining Momentum

Forrester IT

NOVEMBER 8, 2021

Passwordless authentication, in the form of inherence factors (e.g., location, user behavior), is an emerging authentication technology that will protect organizations from brute force attacks, credential stuffing, phishing, and social engineering tactics. Passwordless authentication, in the form of inherence factors (e.g.,

Authentication

Authentication Social Engineering Security

Passwordless MFA for Customers: How to Fortify Security without Introducing Friction

CIO Business Intelligence

MAY 2, 2022

Password-based authentication is likely the most widely used method of authenticating users to online services. Password-based authentication is used because it is easy to understand and implement. However, this comes at the cost of weak security and a poor user experience. Password-based authentication isn’t working.

Security

Security Authentication How To Mobile

The hidden costs of your helpdesk

CIO Business Intelligence

AUGUST 29, 2024

Then there are the potential security vulnerabilities that go hand-in-hand with frequent lockouts, password resets, and re-verifications. When you add multi-factor authentication (MFA) resets to the picture, that number is likely even higher. But what happens when a user can’t access their authenticator app?

Authentication

Authentication Social Security Engineering

Don’t gamble with your identity verification practices

CIO Business Intelligence

OCTOBER 16, 2023

But casino gaming companies MGM Resorts International and Caesars Entertainment were caught short in this area in recent weeks by hackers using identity-based and social engineering attacks that spoofed identity to gain access to secure systems. IBM Security pegged that same number higher, to 95%.

Authentication

Authentication Social Engineering Security

Overcoming the Equation: Security = Friction

CTOvision

JUNE 12, 2014

Why does security have to be so onerous? Is this password secure enough: Mxyzptlk? Now that’s secure – good luck remembering it! We’ve migrated to a userid-password society; as we’ve added layers of security, we password-protect each layer: PC (and now device), network, enclave, application, database, and storage (encryption).

Security

Security Storage Network Mobile

SquareX Discloses “Browser Syncjacking”, a New Attack Technique that Provides Full Browser and Device Control, Putting Millions at Risk

CIO Business Intelligence

JANUARY 30, 2025

Browser extensions have been under the spotlight in enterprise security news recently due to the wave of OAuth attacks on Chrome extension developers and data exfiltration attacks. The extension then silently authenticates the victim into a Chrome profile managed by the attackers Google Workspace.

Security

Security Enterprise Enterprise Authentication

3 ways to deter phishing attacks in 2023

CIO Business Intelligence

OCTOBER 20, 2022

In fact, CIO has reported that it takes only a few minutes for experienced hackers to set up a social engineering attack against enterprises (and their managed service providers) that consider themselves to be secure and protected. This helps in early identification of attacks and increasing overall security hygiene.

Training

Training Banking Social Malware

AI-Powered Phishing: Defending Against New Browser-Based Attacks

SecureWorld News

JANUARY 22, 2025

These sophisticated threats are pushing organizations to reevaluate their defense strategies, particularly in the realm of browser security. These attacks often leverage trusted domains and multi-step processes, making them incredibly difficult for conventional security systems to detect.

Authentication

Authentication Security Firewall Analysis

Marsh McLennan IT reorg lays foundation for gen AI

CIO Business Intelligence

NOVEMBER 1, 2024

One of the world’s largest risk advisors and insurance brokers launched a digital transformation five years ago to better enable its clients to navigate the political, social, and economic waves rising in the digital information age. I want to provide an easy and secure outlet that’s genuinely production-ready and scalable.

Insurance

Insurance Data Center Training Data

Understanding the Deepfake Threat

SecureWorld News

FEBRUARY 13, 2025

Evolution of social engineering Social engineering exploits human psychology to manipulate individuals into revealing sensitive information or taking harmful actions. Consumer fraud: Deepfakes are increasingly used to spread false information, influence elections, and create social unrest.

Authentication

Authentication Financial Video Social

How Digital Provenance Preserves Image Integrity and Security

SecureWorld News

MARCH 12, 2025

In an age where AI-generated content and manipulation tools are readily accessible, questions have to be raised about authenticity. However, the conundrum surrounding content validity isn't exclusively related to brand perception or customer trust; it poses security concerns , as well. Is the current version authentic and unaltered?

Security

Security Authentication Licensing System

Zero Trust: Your Best Friend in the Age of Advanced Threats

SecureWorld News

NOVEMBER 6, 2024

In today's digital landscape, cyber threats are more advanced than ever, and traditional security models are no longer sufficient. Enter Zero Trust, a security framework that integrates defense in depth, Identity and Access Management (IAM), and enforces the least privilege to ensure users and devices have access to only what they truly need.

Authentication

Authentication Network Tools Analysis

Part 2: Guarding against sophisticated threats: Strategies for your best defense

CIO Business Intelligence

OCTOBER 25, 2023

Regan emphasizes that training users to recognize common phishing indicators is essential as the conversation shifts into how users can counter phishing and social engineering tactics. Stronger multifactor authentication (MFA) methods and secure VPNs are critical components in defense. Cybercrime, Security

Strategy

Strategy Authentication Security Training

Bulletproofing your threat surface with the Microsoft security ecosystem

CIO Business Intelligence

JULY 19, 2023

Offering managed services for MDE are service providers like BlueVoyant , which leverages its 24×7 team of experts to enrich MDE behavioral data with threat intelligence and security expertise. Tanium enhances the capabilities of MEI by denying access to non-compliant and otherwise high-risk devices.

Microsoft

Microsoft Security Enterprise Enterprise

The massive Social Security number breach is actually a good thing

Vox

AUGUST 22, 2024

My Social Security number had been compromised in an alleged data breach. One news station ran a hyperbolic headline that claimed , “Hackers may have stolen the Social Security numbers of every American.” It just may be the one good thing that comes from this massive Social Security number breach.

Social

Social Security Data Banking

With greater personalisation comes greater security

CIO Business Intelligence

JULY 10, 2023

It can often feel as though trust and authenticity are in short supply these days. This has reinforced concerns around data privacy and security. In the midst of message and content overload, consumers demand personal, in the moment, experiences that feel safe and secure. It is all encrypted.

Security

Security Retail Data Storage

Mobile Malware Uses Deepfakes, Social Engineering to Bypass Biometric Authentication

SecureWorld News

FEBRUARY 15, 2024

A sophisticated form of mobile malware dubbed "GoldPickaxe" has been uncovered, which collects facial recognition data to produce deepfake videos, enabling hackers to bypass biometric authentication protections on banking apps. The hackers rely heavily on social engineering tactics to distribute the malware.

Malware

Malware Authentication Mobile Engineering

Regeneron and auticon open doors for autistic IT professionals

CIO Business Intelligence

JANUARY 23, 2025

A large majority of autistic people, around 85%, report they enjoy the work they do, however only 44% say they feel they can be their authentic selves at work. Office environments can have many unspoken rules and nuanced social conventions that arent directly expressed, especially to new workers.

Training

Training Programming Biotechnology Network

Marsh McLellan IT reorg lays foundation for gen AI

CIO Business Intelligence

NOVEMBER 1, 2024

One of the world’s largest risk advisors and insurance brokers launched a digital transformation five years ago to better enable its clients to navigate the political, social, and economic waves rising in the digital information age. I want to provide an easy and secure outlet that’s genuinely production-ready and scalable.

Insurance

Insurance Data Center Training Data

Part 1: Guarding against sophisticated threats: Strategies for your best defense

CIO Business Intelligence

OCTOBER 25, 2023

Muddled Libra has a signature move: exploit the 0ktapus phishing kit to craft believable authentication pages and manipulate victims through social engineering. Cybercrime, Security The type of data Muddled Libra is after is also highly specific — and they are very persistent in finding it. Tune in and stay updated.

Strategy

Strategy Telecommunications Authentication Social

The changing face of cybersecurity threats in 2023

CIO Business Intelligence

SEPTEMBER 29, 2023

While the group’s goals were unclear and differing – fluctuating between amusement, monetary gain, and notoriety – at various times, it again brought to the fore the persistent gaps in security at even the biggest and most informed companies. Let’s revisit the most prevalent security threats and see how they’re evolving in 2023.

Network

Network Authentication Firewall Security

Digital Identity Friction: How the Move to Passwordless Can Help and Hurt Your Omnichannel Experience

CIO Business Intelligence

MAY 17, 2022

With a thoughtful, well-planned passwordless deployment, organizations can build security and privacy into streamlined customer experiences. As organizations increasingly adopt cloud-based technologies, they need to incorporate solutions that protect the security and privacy of sensitive data.

Authentication

Authentication Mobile Security Examples

The AI cat and mouse game has begun

CIO Business Intelligence

APRIL 29, 2024

Two-factor authentication practices just won’t cut it. Social engineering for access Hackers, like the ones referenced above, are often motivated by financial gain, but their intentions may also be to create a political disturbance or simply ruin a company’s reputation, among other reasons. Artificial Intelligence, Security

Social

Social Financial Artificial Intelligence Media

Are Your Firewalls and VPNs the Weakest Link in Your Security Stack?

How to defend your organization against social engineering attacks

Webinars

Trending Sources

Cisco touts ‘Internet of Agents’ for secure AI agent collaboration

Webinars

When voice deepfakes come calling

‘Sneaky Log’ Microsoft Spoofing Scheme Sidesteps Two-Factor Security

Human firewalls: The first line of defense against cyber threats in 2025

Chinese cyber espionage growing across all industry sectors

How cybersecurity red teams can boost backup protections

Global AI regulations: Beyond the U.S. and Europe

How to protect your business from email compromise – and be prepared if protection falls short

Architecting Identity: Five Essential Elements of a Modern Customer Authentication Service

Chinese cyber espionage growing across all industry sectors

What you need to know about Okta’s security breach

Three Ways Banks Can Improve Identity Authentication and Customer Data Privacy

Seven Signs That Your Consumers are Ready for Passwordless Authentication

Document Security is More than Just Password-Protection

Compliance, security, and the role of identity

Notre Dame scores big with Wi-Fi 6E stadium upgrade

How to implement zero trust device security

Customer Passwords are a Target for Cybercriminals: How to Address the Threat

The cyber pandemic: AI deepfakes and the future of security and identity verification

S&R Forum 2021: Passwordless Authentication Adoption Is Gaining Momentum

Passwordless MFA for Customers: How to Fortify Security without Introducing Friction

The hidden costs of your helpdesk

Don’t gamble with your identity verification practices

Overcoming the Equation: Security = Friction

SquareX Discloses “Browser Syncjacking”, a New Attack Technique that Provides Full Browser and Device Control, Putting Millions at Risk

3 ways to deter phishing attacks in 2023

AI-Powered Phishing: Defending Against New Browser-Based Attacks

Marsh McLennan IT reorg lays foundation for gen AI

Understanding the Deepfake Threat

How Digital Provenance Preserves Image Integrity and Security

Zero Trust: Your Best Friend in the Age of Advanced Threats

Part 2: Guarding against sophisticated threats: Strategies for your best defense

Bulletproofing your threat surface with the Microsoft security ecosystem

The massive Social Security number breach is actually a good thing

With greater personalisation comes greater security

Mobile Malware Uses Deepfakes, Social Engineering to Bypass Biometric Authentication

Regeneron and auticon open doors for autistic IT professionals

Marsh McLellan IT reorg lays foundation for gen AI

Part 1: Guarding against sophisticated threats: Strategies for your best defense

The changing face of cybersecurity threats in 2023

Digital Identity Friction: How the Move to Passwordless Can Help and Hurt Your Omnichannel Experience

The AI cat and mouse game has begun

Stay Connected