MFA

With the expanding scope of cyberattacks on financial institutions and a substantial increase in fraud, government and industry oversight bodies are stepping up with new regulations and requirements to protect consumers. One of the most recent examples are the updates to the Gramm-Leach Bliley Act (GLBA).  After 20 years of regulating information…

The internet has never faced so much existential risk from people who want to harm companies and their users. While many organizations understand that there’s a link between identity and security, few fully grasp how foundational identity is to a modern security strategy. Organizations with gaps in their identity security are significantly more at…

Apple recently announced support for Multi Device FIDO credentials - also called passkeys. Passkeys allow users a passwordless login to all of their iOS and macOS devices. Passkeys provide a better user experience across websites and apps, and enhance security by virtue of being a standards-based technology that–unlike passwords–is resistant to…

A recent report from the Anti-Phishing Working Group (APWG) revealed phishing attacks for the first quarter of 2022 exceeded one million—the highest on APWG record. As attacks increase, it’s reasonable to expect targeted phishing attacks to increase as well.  The U.S. government is defending itself against this growing threat via mandates and…

As we continue deeper into 2022, facing many of the challenges we saw in 2021 (see Reflections on Security: Looking Back at 2021), optimism may seem difficult. How do we know the next evolution of identity and security practices will be enough? And this time of year always sees a flurry of predictions on what trends will emerge and what should be…

Organizations everywhere are expanding access to their applications and systems, making it easier for employees to work from any device or location. While this has been a boon for productivity, it also creates new targets for threat actors. This has resulted in a new urgency for IT and security leaders to prioritize and enhance login security…

MFA stands for multi-factor authentication, an identity verification method. MFA adds an extra layer of security on top of credentials like usernames and passwords. By doing so, it provides greater certainty that a user is who they claim to be before granting them access to an application, online account, or corporate network. MFA is a critical…

Amidst COVID-19, higher education institutions must constantly be attentive to the latest solutions and defenses in cybersecurity. To protect and accommodate the needs of their students, staff, and larger campus ecosystem, Identity and access management must be amongst their highest priorities. In today’s market, digital transformation—improvement…

Cyber insurance is a promising tool companies can leverage to mitigate the risks of cyber attacks, data breaches, and business disruption. Just like with all forms of insurance, businesses need to ensure they’re protected against loss when the unexpected happens. Moreover, certain steps need to be taken—or criteria met—in order to remain insured…

Two-factor authentication (2FA) is a form of multi-factor authentication (MFA), and is also known as two-step authentication or two-step verification. 2FA is a security measure that requires end-users to verify their identities through two types of identifiers to gain access to an application, system, or network. Think of your most recent login…