The Security Ledger

DECEMBER 21, 2022

Paul speaks with Caleb Sima, the CSO of the online trading platform Robinhood, about his journey from teenage cybersecurity phenom and web security pioneer, to successful entrepreneur to an executive in the trenches of protecting high value financial services firms from cyberattacks. As Mobile Fraud Rises, The Password Persists.

Financial Services 52

Financial Services Cybersecurity Data breaches Authentication 52

Krebs on Security

MARCH 8, 2019

Unfortunately, if you don’t already have an account at the credit bureau’s new myEquifax portal , it may be simple for identity thieves to lift an existing credit freeze at Equifax and bypass the PIN armed with little more than your, name, Social Security number and birthday. Consumers in every U.S. In fact, it was too easy.

Authentication 261

Authentication Passwords Security Access 261

eSecurity Planet

APRIL 18, 2022

Secured computer systems can use advanced detection tools to spot and block such suspicious activities and even catch adversaries. Antivirus and EDR tools, SIEM systems (security information and event management), security vendors, software, hardware, firmware, and operating systems. Also read: Best Penetration Testing Tools.

IT 130

IT Paper Risk Security 130

The Last Watchdog

DECEMBER 12, 2018

Related podcast: The case for ‘zero-trust’ security. As you’ve probably surmised, the castles are meant to represent a business’s security infrastructure. Having strong security infrastructure is all well and good, but you cannot afford to forget your people. And while it does have a moat, that moat is easily forded.

Data breaches 114

Data breaches Cybersecurity Security awareness Paper 114

Security Affairs

APRIL 15, 2022

Cybersecurity experts would have you believe that your organization’s employees have a crucial role in bolstering or damaging your company’s security initiatives. Now is the moment to train your personnel on security best practices, if you haven’t already. Customize Your Security Training.

Cybersecurity 78

Cybersecurity Data Privacy Data breaches Privacy 78

eSecurity Planet

APRIL 7, 2023

Kali Linux turns 10 this year, and to celebrate, the Linux penetration testing distribution has added defensive security tools to its arsenal of open-source security tools. For now, Kali is primarily known for its roughly 600 open source pentesting tools, allowing pentesters to easily install a full range of offensive security tools.

Energy and Utilities 126

Energy and Utilities Cybersecurity Security Passwords 126

eSecurity Planet

JUNE 8, 2022

Rapid7’s online documentation is very thorough, and their knowledge base articles helped us navigate a few configuration hiccups we ran into along the way. We had the InsightIDR core services and endpoint monitoring set up in our lab in just a few hours, and started receiving notifications about security events immediately.

Data collection 91

Data collection Access Passwords Marketing 91

Krebs on Security

AUGUST 5, 2022

In July’s Experian, You Have Some Explaining to Do , we heard from two different readers who had security freezes on their credit files with Experian and who also recently received notifications from Experian that the email address on their account had been changed. So had their passwords and account PIN and secret questions.

Security 267

Security Computer and Electronics Passwords Privacy 267

Krebs on Security

NOVEMBER 11, 2023

Sixteen months later, Experian clearly has not addressed this gaping lack of security. Attempts to log in to my account directly at Experian.com also failed; the site said it didn’t recognize my username and/or password. “I feel silly saving my password for Experian; may as well just make a new account every time.”

Authentication 280

Authentication Passwords Access Security 280

The Last Watchdog

MARCH 7, 2024

“We are thrilled to be working with Badge, enabling a best-in-class authentication solution that builds on top of our market-leading identity data management and identity analytics capabilities to provide greater privacy and security to our customers,” said Wade Ellery , Field CTO, Radiant Logic.

Authentication 130

Authentication Privacy Analytics Digital transformation 130

Troy Hunt

NOVEMBER 5, 2018

These days, I get a lot of messages from people on security related things. Often it's related to data breaches or sloppy behaviour on behalf of some online service playing fast and loose with HTTPS or passwords or some other easily observable security posture. It's totally going to kill passwords!

Passwords 90

Passwords Authentication Data breaches Marketing 90

Krebs on Security

AUGUST 6, 2020

In June, KrebsOnSecurity was contacted by a cybersecurity researcher who discovered that a group of scammers was sharing highly detailed personal and financial records on Americans via a free web-based email service that allows anyone who knows an account’s username to view all email sent to that account — without the need of a password.

Insurance 337

Insurance Communications Authentication Access 337

Troy Hunt

NOVEMBER 21, 2017

For example, if your bank verifies that you are indeed who you say you are by asking you for your date of birth yet that's appeared in a data breach, how sound is it as a knowledge-based authentication (KBA) attribute?

Data breaches 80

Data breaches IoT Authentication Passwords 80

Security Affairs

JULY 13, 2021

Mindaugas (who wished his last name not to be disclosed publicly), an executive at a UK-based company, unknowingly fell for a scam when he tried to claim a £60 bonus supposedly offered by Coinbase, a mistake that resulted in £15,000 lost to fraudsters in minutes. But all we got back was a password reset request.”. The double dip.

Authentication 99

Authentication Phishing Passwords IT 99

Security Affairs

SEPTEMBER 15, 2021

. “On September 13, 2021, a group of kids calling themselves ‘Anonymous’, whom we’ve never heard of, said they manage[d] to get a hold of, well, honestly, all our data, and then released it,” reads the Anonymous’ message published on the Epik’s knowledge base. Of course it’s not true.

Data breaches 113

Data breaches Passwords Access Privacy 113

Troy Hunt

DECEMBER 10, 2019

So why doesn't every site take away the ability for people to choose their own passwords? Why not just generate the password for them thus completely eradicating password reuse? It doesn't matter who generated the password. passwords ?? But how relevant is this criticism when the passwords are system-generated?

Passwords 65

Passwords Security Authentication IT 65