Passwords
Passwords | News, how-tos, features, reviews, and videos
10 topics every security training program should cover
A thorough end-user education program is a necessary weapon in the battle to protect your perimeter. These 10 topics are the baseline of what to include in an awareness training program.
Why you shouldn’t use your face as your password
You can now use your face to lock your smartphone. But just because you can doesn’t mean you should.
Does the answer to better security lie in password-less experiences?
Truly password-less authentication that lets users control personal details is key to avoid identity theft and data breaches.
Identity eats security: How identity management is driving security
New intelligent identity management systems are changing the way organizations authenticate users and devices, and they’re making identity the new security perimeter.
Ready for more secure authentication? Try these password alternatives and enhancements
Password-only authentication is dead. Combine passwords with multifactor authentication, social login, biometrics, or risk-based authentication to better protect users and your reputation.
Are regulations keeping you from using good passwords?
Most companies are using password "best practices" that are out of date and ineffective. Regulations are getting in the way of changing them.
Salted Hash – SC 02: What a TSB phishing attack looks like
In April, TSB (a retail and commercial bank in the UK) announced they would shutdown some systems for an IT upgrade. However, the upgrade was a disaster, and over a month later customers are still having problems. As a result,...
How risk-based authentication has become an essential security tool
A new generation of risk-based authentication (RBA) products can improve both customer experience and security. Here's what to look for in them.
One year later: security debt makes me WannaCry
WannaCry rocked the world one year ago, but there are still lessons for us to unpack about the debt we still have to pay to be secure.
Salted Hash - SC 01: What an Apple phishing attack looks like
Today on Salted Hash, we’re going to look at a phishing attack from two sides. The first side will be what the victim sees. After that, we're going to see what the criminal sees. We'll also discuss some steps administrators can take...
video
What an Apple phishing attack looks like | Salted Hash Ep 32
How can you tell the difference between a legitimate email and a phishing attack? Host Steve Ragan shows what an Apple phishing attack looks like, screen by screen, showing the difference between the real and the fake.
Will WebAuthn replace passwords or not?
Or, the password is dead – long live the password.
Get Security Smart
From the editors of CSO, Security Smart is a quarterly newsletter ready for distribution in your organization. We combine personal device and home safety tips with organizational security awareness, making security training relevant,...
1.4B stolen passwords are free for the taking: What we know now
The 2012 LinkedIn breach, along with other old third-party breaches, is still paying dividends for criminals, who now have free access to 1.4 billion previously exposed email addresses and passwords.
The borg ate my login
There is no ‘one size fits all’ solution for bots...
What cybersecurity surprises does 2018 hold?
One thing's for sure: securing ourselves and our organizations will only get more difficult this year.
Security myth: my admins would quit if I implement a password vault!
The issue of secure password vaulting and the concern that something like that could never work at your company.
In the aftermath of yet another Meltdown, no secrets are safe
Meltdown and Spectre reveal that perfect information protection comes at an increasingly steep cost.
Sponsored Links