The memo does not include any requirements for authenticators to be phishing-resistant, even though DoD is required to retire phishable authenticators by 2027.

A new Pentagon memo outlines approved non-CAC authentication tools and sets boundaries for accessing DOW systems without PKI.

NIS2 puts identity and access controls under the spotlight, with weak passwords and poor authentication now a compliance risk. Specops Software explains how to align password policies and MFA with ...

With hackers looking for any way they can to gain access to your personal information via every form of phishing scheme, it's critical to take every precaution to protect your data. Multi-factor (MFA) ...

Two-factor authentication (2FA) is a great way to boost the security of your accounts. But even with that added layer of security, malicious actors are finding ways to break in. So-called adversary-in ...

Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows ...

Hackers often exploit reused passwords, gaining access to multiple accounts if just one is compromised. To stay safe, use strong, unique passwords for every account and change them regularly. However, ...

If you haven’t seen your data exposed in a major data breach within the last five years alone, you haven’t been paying attention. Billions of people worldwide have lost their data many times over. 26 ...

The purpose of this policy is to define requirements for accessing Connecticut College's network and information systems securely. These standards are designed to minimize the potential security ...

Microsoft's public cloud computing platform, Azure, was recently targeted by a cyberattack that led to a multi-hour outage. While a newly announced mandatory two-factor authentication login ...

Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication in specific LDAP setups.