Duo's Security Blog

SEPTEMBER 4, 2023

And when it comes to managing access for this plethora of devices, password security just isn’t cutting it anymore. In our recent passkey blog series , we’ve been unpacking the difference between new passkey technology and more conventional password security in light of some of the most critical authentication scenarios.

Passwords 81

Passwords Authentication Accountability Password Management 81

Cisco Security

AUGUST 26, 2021

With the addition of Kenna Security into our program we now have over 250 technology partners and over 400 integrations for our mutual customers to utilize. An integration with Cigent Technology is now available for Secure Endpoint customers to integrate with. Kenna has a healthy 3rd Party ecosystem of technology partners.

Technology 145

Technology Firewall VPN Authentication 145

Duo's Security Blog

SEPTEMBER 1, 2023

Nobody likes passwords. So for many IT teams, the news that tech giants are steadily embracing passkey technology is exciting. And is it realistic to consider passkeys – and the passwordless solutions they support – as a valid alternative for traditional password security? But how effective are passkeys really?

Passwords 69

Passwords Authentication Phishing Technology 69

Security Boulevard

APRIL 18, 2025

Also, find out what Tenable webinar attendees said about identity security. National Institute of Standards and Technology (NIST) released a draft update of its Privacy Framework (PFW) that more closely interconnects it with the popular Cybersecurity Framework (CSF) , which was updated in 2024. This week, the U.S.

Risk 59

Risk Cybersecurity Data privacy Software 59

Duo's Security Blog

FEBRUARY 11, 2022

To help you make the most of this new offering, Duo Product Manager Chris Demundo and Product Marketing Manager Ted Kietzman recently hosted the webinar Ask Us Anything: Passwordless Tips & Tricks , answering passwordless questions crowdsourced from our Duo Community public forum. Why should I choose Duo for passwordless?

Authentication 111

Authentication Passwords Mobile Risk 111

Troy Hunt

FEBRUARY 16, 2018

Monday was going to be full of coding work around Pwned Passwords V2 (and a few other HIBP things) then Texthelp went and got themselves pwned and there went my day writing about the ramifications of that. We've got the technology, it's just that most people don't know it exists! Thank you Aussie internet ??. References.

Data breaches 125

Data breaches Marketing Passwords Internet 125

Duo's Security Blog

SEPTEMBER 16, 2021

Wolfgang Goerlich details in our white paper, Passwordless: The Future of Authentication , how pairing passwordless technology with strong MFA to protect access across cloud and on-prem is a practical way to provide the broadest security coverage today. MFA + Passwordless = Raising the Bar See the video at the blog post.

Authentication 128

Authentication Passwords Phishing CISO 128

Duo's Security Blog

JANUARY 14, 2025

Hes asking if you can help him with a password reset and hes calling from a recognized numberdo you trust it? Preventing Helpdesk Phishing with Duo and Traceless Webinar Helpdesk impersonation is a big concern today, with MSPs contending with fraudulent attempts from attackers pretending to be clients. How can Duo MSP help?

Phishing 111

Phishing Technology Scams Cybercrime 111

Thales Cloud Protection & Licensing

FEBRUARY 19, 2025

Go Beyond FIDO Standards: Best Practices When Deploying FIDO Security Keys in Enterprise madhav Thu, 02/20/2025 - 06:22 Initially designed for the consumer market, the FIDO (Fast IDentity Online) standard aims to replace passwords with more secure authentication methods for online services. While recent versions, like FIDO2.1,

Authentication 71

Authentication Passwords Marketing Risk 71

Duo's Security Blog

OCTOBER 11, 2023

To learn more about how Duo’s access management trifecta empowers you to authenticate further and defend faster, be sure to tune into our webinar Authenticate Further, Defend Faster with Higher Security from Duo. When connected to an SSO solution, passwordless technology removes credentials from the login process altogether.

Authentication 126

Authentication Risk Technology Phishing 126

Duo's Security Blog

JULY 6, 2023

Today we will discuss the survey makeup, review key results and explain why Duo’s Passwordless technology is well positioned to meet enterprise authentication needs highlighted in the study. Investment in strong authentication is growing Top 3 “Areas expected to benefit from an increase in authentication technologies over the next 12 months.”

Authentication 100

Authentication Passwords Risk Technology 100

Thales Cloud Protection & Licensing

DECEMBER 2, 2021

The evolving business and technology landscape and the need for secure, yet convenient, ways of logging into applications are driving the quest for more effective authentication. Many businesses are still relying on single factor, insecure passwords, that are a source of increased risks. Thu, 12/02/2021 - 08:36. The changing landscape.

Authentication 125

Authentication Passwords Risk Mobile 125

Duo's Security Blog

OCTOBER 6, 2023

TL,DR: Check out our on-demand webinar Your Zero Trust Roadmap , where we outline the five key steps to secure user access to apps. Shrink the attack surface by reducing password usage with passwordless SSO and make it faster and more convenient for users to get to the apps they need – whether SaaS-based or private.

Authentication 144

Authentication Risk Social Engineering InfoSec 144

Duo's Security Blog

NOVEMBER 6, 2023

Passwords that are easily detectable or reused often are vulnerable to phishing attacks. This lowers the number of passwords users must remember (or re-use, as is often the case). The problem with balancing many identities Conventional passwords create separate lines for each account. What is a credential stuffing attack?

Passwords 83

Passwords Authentication Risk Technology 83

Cisco Security

FEBRUARY 14, 2022

Richard Archdeacon: I’m frequently asked about when we will no longer need passwords. We have all seen the most commonly breached passwords are ‘123456’ or the classic ‘password’. Is that because users think that password is secure? We see ‘password stuffing’ attacks happen all the time.

Passwords 128

Passwords Technology Government CISO 128

Duo's Security Blog

AUGUST 25, 2021

As a former high school history teacher, I used to love teaching lessons that used technology. However, incorporating technology was not as simple as logging on to a computer. We owe it to our students to unlock the use of technology and make it easy to be safe online.

Cybersecurity 93

Cybersecurity Passwords Technology Data breaches 93

Security Boulevard

JULY 21, 2023

This is why it's critical to secure your user identities and passwords and the IAM services that manage them. It comprises technologies and best practices to protect against unauthorized access, account takeover, credential misuse, privilege escalation, and other malicious activities that target user accounts and credentials.

Threat Detection 98

Threat Detection Passwords Authentication Accountability 98

Security Boulevard

SEPTEMBER 20, 2024

Working with international partners, the FBI led the operation against the botnet, which was active since 2021 and was controlled by Beijing-based IT contractor Integrity Technology Group, also known as Flax Typhoon. Replace default passwords with strong passwords. and in other countries.

Cybersecurity 97

Cybersecurity IoT Hacking Risk 97

Duo's Security Blog

SEPTEMBER 30, 2022

If you are not sure what the new security requirements are or if they affect your business or organization, don’t worry – we put together a webinar to help answer those questions. Watch the FTC Safeguards Rule Webinar. The definition of financial institutions includes non-financial institutions.

Cybersecurity 94

Cybersecurity Authentication CISO Healthcare 94

Security Boulevard

OCTOBER 4, 2024

Specifically, they’re encouraging people to: Boost their password usage by using strong passwords , which are long, random and unique, and using a password manager to generate and store them. In the U.S., Protect all accounts that offer multifactor authentication (MFA) with this security method. Source: “Oh, Behave!

Cybersecurity 69

Cybersecurity CISO Ransomware Technology 69

Duo's Security Blog

FEBRUARY 6, 2024

Traditionally, credentials (such as usernames, passwords or security tokens) have been the gatekeepers of access. However, over the past 18 months, there has been an unprecedented wave of identity-based cyberattacks with devastating consequences. Each user’s identity is a potential door into an organization’s environment. Stay tuned!

Accountability 119

Accountability Authentication Risk Marketing 119

Security Boulevard

MARCH 12, 2025

Breaking the Barriers to a Password-Free Life in Enterprise: Meet SafeNet eToken Fusion NFC PIV security key madhav Thu, 03/13/2025 - 06:46 As large organizations increasingly shift towards passwordless solutions, the benefits are clear: enhanced user experience, improved security, and significant cost savings. Trade Agreements Act (TAA).

Passwords 52

Passwords Authentication Digital transformation Government 52

Thales Cloud Protection & Licensing

FEBRUARY 24, 2021

For the sake of brevity, passwords are not going to be examined, given the industry consent that nowadays passwords are more a vulnerability than an authentication mechanism. However, the National Institute of Standards and Technology (NIST) has published guidance that recommends against using SMS as the channel for OOB verification.

Authentication 87

Authentication Mobile Passwords Software 87

Webroot

FEBRUARY 5, 2025

Major companies like Apple, Google, and Microsoft are rolling out passkeys as a replacement for passwords, promising both enhanced security and a smoother user experience. With Password Day coming up this Saturday, it’s the perfect time to discuss the future of authentication.

Authentication 60

Authentication Password Management Passwords Backups 60

Jane Frankland

OCTOBER 17, 2023

In addition to technology, it also requires employee education, so your workforce understands the dangers and becomes an extension of your security department – effectively, a defence asset. Then there’s the promise of free content, software, and products; and using unsecured public wi-fi networks, or weak passwords.

Security Awareness 124

Security Awareness Education Cybersecurity Data breaches 124

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Cyber Risk 147

Cyber Risk Risk Financial Services Banking 147

Cisco Security

AUGUST 26, 2022

Just like the myriad expanding galaxies seen in the latest images from the James Webb space telescope, the cybersecurity landscape consists of a growing number of security technology vendors, each with the goal of addressing the continually evolving threats faced by customers today. Read more here. Read more here. Read more here.

Firewall 145

Firewall Authentication Passwords Threat Detection 145

Duo's Security Blog

APRIL 20, 2023

In many rnodern phishing attacks, malicious links send employees to copies of otherwise farniliar websites—like an internal payroll portal login page where it’s quick to muscle-rnemory a username and password. Moreover, they were incredibly complex to integrate with the University’s technology stack.

Phishing 106

Phishing Social Engineering Authentication Engineering 106

Security Boulevard

APRIL 12, 2022

81% of payer executives say their company is investing in technology to improve member experience. No more typing out usernames and thinking up passwords. Examples of self-service include managing login preferences and passwords, updating contact information, requesting specific support, and so on. Progressive Profiling.

Healthcare 52

Healthcare Passwords Authentication CISO 52

Duo's Security Blog

OCTOBER 20, 2021

That’s why we’ve committed to making the transition as easy as possible from a world filled with passwords to one with far fewer “password123”s. However, headlines about passwordless typically read like this: “Company X Wants to Eliminate the Password” or “The Time for Passwordless Authentication Is Now.” The answer may surprise you.

Education 52

Education Authentication Passwords CISO 52

Responsible Cyber

MARCH 2, 2025

SAP Business Technology Platform (BTP): SAP BTP, with 16,000 customers, focuses on enterprise-grade PaaS, IaaS, and SaaS. password-protected links), and global accessibility contribute to its widespread adoption. Its cloud-based infrastructure ensures scalability, supporting everything from small meetings to large webinars.

Education 40

Education Marketing Encryption Threat Detection 40

Duo's Security Blog

JULY 29, 2021

Hopefully, you’ve already got this one — but if not, there are countless products that can help you mitigate the threats of password-based single-factor authentication. So long as passwords remain an option, adversaries can apply the same attacks they use today to password-based auth methods.

Authentication 59

Authentication Passwords Accountability Manufacturing 59

Security Boulevard

APRIL 8, 2021

Our team felt that to call ourselves a platform, we need to meet certain criteria: The components of the platform should all work off the same underlying technology. Our underlying technology. All of our platform components are built on top of our core technology? We believe that, in CORE, we do all these and more.

Education 52

Education Technology Passwords Accountability 52

Responsible Cyber

JULY 13, 2024

Phishing Attacks : Phishing is a common tactic used to trick content creators into sharing sensitive information like passwords or financial details. Strong, Unique Passwords Using strong, unique passwords for all accounts is fundamental. Creating and Managing Secure Accounts 1.

Cybersecurity 52

Cybersecurity Cyber threats Cyber Attacks Authentication 52

Security Boulevard

AUGUST 26, 2021

The primary reason is cybercriminals’ use of new and emerging technologies, such as artificial intelligence (AI) and machine learning (ML). . Role-based access control (RBAC) is a model for determining appropriate access to applications, systems, infrastructure, and other corporate technology assets. What Is RBAC?

Data breaches 59

Data breaches Artificial Intelligence Retail Architecture 59

Security Boulevard

DECEMBER 20, 2024

on-demand webinar) Harden Your Cloud Security Posture by Protecting Your Cloud Data and AI Resources (blog) 10 Considerations for Securing Stateful Persistent Volumes Attached to Kubernetes Pods and Applications (white paper) 2 - Feds: North Korea plants IT workers to commit fraud in the U.S.

Cybersecurity 52

Cybersecurity Government Internet Internet 52

Security Boulevard

OCTOBER 25, 2024

Organizations are eagerly trying to understand both how generative AI can help their cybersecurity programs and how this technology is being used by malicious actors to make cyberattacks harder to detect and prevent. Meanwhile, concern about data protection has ballooned in the past couple of years. “As

Software 80

Software Cybersecurity CISO Manufacturing 80