The Hacker News

APRIL 10, 2024

Think of it like this: misconfigurations, forgotten accounts, and old settings are like cracks in your digital fortress walls. Identity Threat Exposures (ITEs) are like secret tunnels for hackers – they make your security way more vulnerable than you think.

Firewall 118

Firewall Passwords Accountability 118

The Hacker News

MARCH 17, 2021

After all, they're usually concerned with different parts of the cybersecurity puzzle – one providing platforms and tools to defend organizations, the other keeping them accountable and looking for blind

Accountability 103

Accountability Cybersecurity 103

The Hacker News

MARCH 13, 2024

The use of SaaS applications involves a wide range of identities, including human and non-human, such as service accounts, API keys, and OAuth authorizations. Identities are the latest sweet spot for cybercriminals, now heavily targeting SaaS applications that are especially vulnerable in this attack vector.

Accountability 114

Accountability 114

Hacker's King

OCTOBER 26, 2024

Activities during this week include engaging workshops, informative webinars, and community events, all designed to empower individuals with the knowledge and skills necessary to navigate today’s cyber threats effectively. Change them regularly and avoid reusing passwords across different accounts.

Cybersecurity 59

Cybersecurity Cyber threats Education Passwords 59

Security Affairs

AUGUST 28, 2020

” Experts pointed out that the attackers used a well-developed LinkedIn account in this campaign while they showed willingness to speak to the victim on the phone, over WhatsApp, using a legitimate German phone number. “This TTP is uncommon and jeopardizes the fake identity of the attackers (unlike emails for example).

Phishing 145

Phishing Accountability Advertising Media 145

Security Affairs

JANUARY 28, 2020

The Zoom platform hosts both password-protected virtual meetings and webinars, and sessions for non-pre-registered participants who can join the meetings by entering a unique Meeting ID (comprised of 9, 10, and 11-digit numbers). The knowledge of Meeting IDs could allow miscreants joining meetings or webinars.

Passwords 125

Passwords Advertising Accountability Hacking 125

The Hacker News

AUGUST 15, 2023

Cybercriminals gaining immediate and unhindered access to sensitive data, email accounts, and other applications. Even with comprehensive security awareness training, many employees still fall victim to credential phishing scams. The result? But what if you could outsmart these criminals and protect your organization?

Phishing 73

Phishing Scams Security Awareness Accountability 73

Security Boulevard

MARCH 26, 2025

tl;dr: Less FPs for Owns/WriteOwner and new Owns/WriteOwnerLimitedRights edges Before we get started, if youd prefer to listen to a 10-minute presentation instead of or to supplement reading this post, please check out the recording of our most recent BloodHound Release Recap webinar. You can also sign up for future webinars here.

Accountability 52

Accountability Engineering 52

Hot for Security

APRIL 12, 2021

In-session chat in Zoom Meetings and Zoom Video Webinars are not impacted by the issue,” said the company in a statement to Tom’s Guide. “The attack must also originate from an accepted external contact or be a part of the target’s same organizational account.”

Accountability 139

Accountability 139

Security Affairs

NOVEMBER 17, 2020

When it finds publicly posted meeting information that indicates a given meeting may be at high risk of being disrupted, we notify account owners and admins by email.” . “The At Risk Meeting Notifier scans public posts on social media sites and other public online resources for Zoom meeting links. Pierluigi Paganini.

Risk 115

Risk Media Hacking Passwords 115

The Hacker News

MAY 8, 2023

But there's good news - with the right security measures in place, such as real-time MFA and service account protection, you can effectively protect yourself against these types of attacks. In recent years, these attacks have become increasingly common and can cause significant damage to organizations of all sizes. That's why we're

Ransomware 73

Ransomware Accountability 73

Duo's Security Blog

JANUARY 14, 2025

In recent webinar Preventing Helpdesk Phishing with Duo and Traceless , Duo PMM Katherine Yang sat down with Gene Reich, Co-founder of Traceless to discuss why stronger identity verification is critical for MSPs and helpdesk teamsespecially with the increased accessibility of AI technologies driving identity fraud. How can Duo MSP help?

Phishing 111

Phishing Technology Scams Cybercrime 111

The Hacker News

AUGUST 4, 2023

Privileged Access Management (PAM) solutions are widely acknowledged as the gold standard for securing critical privileged accounts. However, many security and identity teams face inherent obstacles during the PAM journey, hindering these solutions from reaching their full potential.

Accountability 72

Accountability 72

BH Consulting

JANUARY 28, 2021

In our latest webinar, we looked at the EU data transfer fallout from Schrems II. That was one of the key conclusions from BH Consulting’s webinar about lawful data processing after the ‘Schrems II’ court decision. The key takeaways from the webinar were: Data mapping: understand and update your data flows.

Risk 52

Risk Encryption Government Accountability 52

Security Boulevard

FEBRUARY 14, 2025

Heres why and how tech firms are responding (World Economic Forum) Quantum ComputingQuantifying the Current State of the Art to Assess Cybersecurity Threats (MITRE) 3 - A temperature check on cloud security challenges During this weeks webinar How does an industry leader like Tenable protect its own cloud environments?,

Banking 64

Banking Cybercrime Cybersecurity Ransomware 64

Duo's Security Blog

NOVEMBER 20, 2023

Security professionals agree that passwords are low hanging fruit for cybercriminals and can even be the keys to the kingdom when the compromised passwords belong to privileged accounts. Add to this, the risks of weak authentication factors such as SMS one-time passcodes and dormant or inactive accounts.

Threat Detection 138

Threat Detection Authentication Accountability Data breaches 138

Security Boulevard

MARCH 21, 2025

77% of organizations have the overprivileged default Compute Engine service account configured in Google Vertex AI Notebooks which puts all services built on this default Compute Engine at risk. Prioritize vulnerability remediation by understanding which CVEs pose the greatest risk to your organization.

Risk 69

Risk IoT Cybersecurity Manufacturing 69

SecureWorld News

AUGUST 30, 2021

In the software development life cycle (SDLC), 85% of leaking secrets come from developers sharing information on public personal accounts. SecureWorld welcomed Mackenzie Jackson, a Developer Advocate for GitGuardian, to present the webinar, Is Your Software Development Life Cycle Protected Against Secret Sprawl?

Software 91

Software Accountability Risk Technology 91

Malwarebytes

APRIL 2, 2023

Apple fixes actively exploited vulnerability and introduces new features Steer clear of this EE phish that wants your card details 3 tips to raise your backup game 3 tips for creating backups your organization can rely on when ransomware strikes Stay safe!

Backups 87

Backups DDOS Ransomware Cyber threats 87

Duo's Security Blog

FEBRUARY 11, 2022

To help you make the most of this new offering, Duo Product Manager Chris Demundo and Product Marketing Manager Ted Kietzman recently hosted the webinar Ask Us Anything: Passwordless Tips & Tricks , answering passwordless questions crowdsourced from our Duo Community public forum. Where can I learn more about Duo Passwordless?

Authentication 111

Authentication Passwords Mobile Risk 111

Malwarebytes

JULY 16, 2023

Threatening rogue finance apps removed from the Apple Store MOVEit Transfer fixes three new vulnerabilities Malwarebytes Browser Guard introduces three new features Warning issued over increased activity of TrueBot malware Stay safe!

Ransomware 92

Ransomware Mobile Accountability Malware 92

Security Boulevard

DECEMBER 30, 2024

This requirement aims to give investors timely and relevant information about potential risks that could impact business operations and financial performance.

Cybersecurity 85

Cybersecurity Cyber Risk CISO Risk 85

Duo's Security Blog

JULY 21, 2022

Enhanced Security Visibility and Threat Intelligence When Duo launched Trust Monitor in November 2020, the idea was to highlight suspicious login activity and help SecOps investigate potentially compromised accounts. Surfacing this information provides SecOps analysts with greater security visibility into potential threats.

Authentication 105

Authentication Threat Detection Accountability Mobile 105

Duo's Security Blog

FEBRUARY 6, 2024

Reducing the risk of identity-based attacks Picture a scenario where an attacker acquires a list of dormant accounts, performs credential-stuffing, and gets the necessary credentials to log-in. Stay tuned!

Accountability 119

Accountability Authentication Risk Marketing 119

Security Affairs

FEBRUARY 20, 2022

Business Email Compromise/Email Account Compromise (BEC/EAC) is a sophisticated scam that targets both entities and individuals who perform legitimate transfer-of-funds requests. Use secondary channels or two-factor authentication to verify requests for changes in account information. ” reads the FBI’s PSA.

Accountability 100

Accountability Social Engineering Scams Mobile 100

BH Consulting

MARCH 26, 2025

Dr. Valerie Lyons, COO of BH Consulting, talked about these critical topics for the Institute of Directors Ireland in a recent webinar. It introduces accountability measures for large platforms, and strengthens users’ rights. And they need to do this while navigating an increasingly complex regulatory landscape.

Government 52

Government Artificial Intelligence Risk Digital transformation 52

Duo's Security Blog

SEPTEMBER 4, 2023

To learn more about the difference between passkeys and passwords – and which solution offers the best value for enterprises – be sure to tune into our webinar, The State of Passkeys in the Enterprise , on September 7th at 9am PST | 12pm EST. Passkeys on User Endpoints Passkeys and passwords can both be stored on endpoints.

Passwords 81

Passwords Authentication Accountability Password Management 81

SecureWorld News

SEPTEMBER 29, 2020

Unwitting employees of the agencies visited the fake web pages and provided their e-mail account usernames and passwords. Environmental Protection Agency. government agencies. Once the orders were received in Nigeria, Ogunremi and his conspirators sold the toner cartridges to another individual on the black market for profit.".

Phishing 96

Phishing Government Cyber Risk Cybercrime 96

Security Boulevard

SEPTEMBER 8, 2021

Learn more about the new ForgeRock Autonomous Identity release by joining our upcoming webinar, “A New Era: Maximizing Zero Trust with AI-Driven Role Management. . This results in overprovisioned access, orphaned accounts, and entitlement creep, which can lead to increased cyber risks.

Artificial Intelligence 98

Artificial Intelligence Risk Cyber Risk Government 98

Cisco Security

JANUARY 22, 2021

The other is User Account Control (M1052) , a Windows configuration step that helps stop adversaries from gaining elevated process access. Beyond mitigating Trusted Relationship exploits, MITRE says segmentation defends against all of these adversary techniques too: Account Manipulation (T1098). Create Account (T1136).

Accountability 136

Accountability Firewall Software Risk 136

SC Magazine

FEBRUARY 23, 2021

“At this point, we can’t predict whether information was actively stolen or compromised by attackers or unauthorized users,” Huntress Senior Security Researcher John Hammond wrote in a blog post following a webinar aimed at managed service providers that revealed the company’s research.

Media 89

Media Mobile Accountability Software 89

Security Boulevard

MARCH 5, 2025

Tens of thousands of user accounts and devices across multiple technology stacks, coupled with decades of built-up technical debt and misconfigurations, create Identity Attack Paths that attackers can exploit to turn initial access into complete enterprise takeover. EDT on Thursday, March 20.

Penetration Testing 52

Penetration Testing Risk Marketing Engineering 52

Duo's Security Blog

MAY 6, 2024

Despite their remarkable security value, our 2024 Trusted Access Report reveals that passwordless methods still account for less than 5% of authentications. If you’d like to learn more about Continuous Identity Security, register for our webinar , read more at our solution page , or just drop us a line. The benefit is twofold.

Authentication 95

Authentication Accountability VPN Phishing 95

Security Boulevard

JULY 6, 2023

It's no secret that the bad guys are training their artificial intelligence (AI) engines to crack passwords, perform account takeovers (ATO), and automate their ransomware demands. Modern solutions need to take into account the new behavioral situation of the user and allow some flexibility – for a defined period of time.

Artificial Intelligence 105

Artificial Intelligence Passwords Authentication Accountability 105

Duo's Security Blog

SEPTEMBER 1, 2023

Passkeys simplify account registration for apps and websites, are easy to use, work across most of a user’s devices, and even work on other devices within physical proximity.” - FIDO Alliance Most people know what passwords are and have experienced first-hand some of the many issues with them. Want to learn more about passkeys?

Passwords 133

Passwords Authentication Insurance Cyber Insurance 133

Security Boulevard

SEPTEMBER 14, 2021

As part of our upcoming attendance at the International Cyber Expo & International Security Expo, we were lucky enough to sponsor The Cyber Security Webinar Series with Nineteen Group and Grey Hare Media.

Media 59

Media Accountability Cybersecurity 59

Security Boulevard

JULY 21, 2023

It comprises technologies and best practices to protect against unauthorized access, account takeover, credential misuse, privilege escalation, and other malicious activities that target user accounts and credentials. These changes may include the creation of unusual accounts or registering new authentication devices.

Threat Detection 98

Threat Detection Passwords Authentication Accountability 98