Access Control

Access Control news, information, and how-to advice

nsa director vice adm michael rogers
windows phone biometrics

fido alliance u2f usb authentication oct 2014

Windows 10 embraces password-killing biometric authentication

Microsoft joined the FIDO Alliance in 2013 and is ready to add the password-less authentication standard into its flagship product.

Wifi sign on gate

Personal weather stations can expose your Wi-Fi network

In the latest Internet of Things security blunder, personal weather station devices made by Netatmo were found sending users' Wi-Fi passwords back to the company over unencrypted connections.

jaguar land rover

Senators to push privacy, security legislation for IoT

Some Democratic senators want new laws that mandate security and privacy measures on the Internet of Things, as concern grows over personal data collected by connected devices.

jeb bush

Jeb Bush's email dump puts constituents' personal data online

The emails posted on a Bush website included personal data such as Social Security numbers

rfid implant

Office complex implants RFID chips in employees' hands

A Swedish high-tech office complex has been offering RFID chip implants to employees of corporate tenants to access security doors, use photocopiers and even pay for food in the cafeteria.

apple store

ID theft ring allegedly stole $700,000 in Apple gift cards

Five people have been indicted in scheme that took advantage of Apple 'instant credit'

spies

How corporate spies access your company's secrets

Lower-level employees can infiltrate corporate assets and remain undetected for months, or even years. How can you safeguard your sensitive data from prying eyes?

cso50 winners

CSO50 winners announced

Find out the winners of CSO's upcoming event.

Tap Card to Access Computer

Authentication for the ridiculously rushed

People in hospitals operate at a ridiculous pace and deal with highly sensitive, highly regulated data. Can we security professionals find a way to let them do their job quickly and yet maintain the security required by law (and...

gas station

Thousands of U.S. gas stations exposed to Internet attacks

Over 5,000 tank gauges that are used to monitor fuel levels and potential spills are accessible from the Internet without a password

Experts speak out about proposed changes to hacking law

President Obama is proposing changes to the Computer Fraud and Abuse Act (CFAA), but will they do more harm than good? Experts are starting to weigh in on the topic, and the reviews so far are mixed.

Disney Magic Band

The magic of Disney MagicBands

Disney has turned boring physical security into convenience, better service, and an actual revenue stream…

04 phishing

Free tool automates phishing attacks for Wi-Fi passwords

The tool can disconnect Wi-Fi users and trick them into disclosing their access password to a rogue access point

21 jpmorganchase

Two-factor authentication oversight led to JPMorgan breach, investigators reportedly found

The attackers stole an employee's access credentials and used them to access a server that lacked a stronger authentication mechanism

Runaway Train

Google's work on full encryption chugs along, with Yahoo's help

Code has been migrated to GitHub to foster involvement from the wider tech community

breach bucket

IT and end users are far apart on critical data access

End users have access to a lot more sensitive data than IT departments think they do, says a new Ponemon survey

sony pictures booth

Destover variant signed with stolen Sony certificate was part of a joke

On Tuesday, researchers at Kaspersky Lab reported that a sample from the Destover family of malware – the same family used to attack Sony Pictures – was signed by a stolen Sony certificate. As it turns out, the sample was part of a...

present gift snow holiday

Security executives reveal their holiday wish lists

Do you know any security executives who say they have everything they need to keep their organizations safe from threats? Chances are you don’t.

Load More