2fa – Page 8 – Computer Security Articles

Business email compromise scam costs Pathé $21.5 million

November 19, 2018 admin 2fa, authentication, bec, Business Email Compromise, CEO, CFO, cybercrime, mfa, pathe, phish, SCAM, Social engineering, two-factor authentication

Credit to Author: Christopher Boyd| Date: Mon, 19 Nov 2018 16:00:23 +0000

Recently released court documents show European-based cinema chain Pathé lost a small fortune to a business email compromise (BEC) scam in March 2018. The attack cost the company $21.5 million—that’s 10 percent of its total earnings. Learn how to avoid BEC scams and keep your company in the black.

Categories:

Tags: 2fa authentication bec Business Email Compromise CEO CFO mfa pathe phish scam two-factor authentication

Kaspersky Security

SMS-based two-factor authentication is not safe — consider these alternative 2FA methods instead

October 16, 2018 admin 2fa, authenticators, privacy, Tips, two-factor authentication, U2F

Credit to Author: Alex Drozhzhin| Date: Tue, 16 Oct 2018 13:50:18 +0000

Why SMS isn’t the best choice for two-factor authentication, and what alternative types of 2FA you should consider.

MalwareBytes Security

A week in security (September 10 – 16)

September 17, 2018 admin 2fa, a week in security, Android, android browser, banking Trojan, banking trojans, botnets, hmrc phish, microsoft, omnichannel fraud, phishing, portable router, Project Verify, ram nit, Ramnit Trojan, ransomware, recap, recon malware, Scammer, security of portable router, Security world, tech support scam, tech support scams, Tor, Trojan, two-factor authentication, Week in security, weekly blog roundup

Credit to Author: Malwarebytes Labs| Date: Mon, 17 Sep 2018 15:56:14 +0000

A roundup of the security news from September 10–16, including omnichannel fraud, ways to get back at scammers, the security of 2FA, and partnerstrokas.

Categories:

Tags: 2fa a week in security Android android browser banking Trojan banking Trojans botnets hmrc phish microsoft omnichannel fraud phishing portable router project verify ram nit Ramnit Trojan ransomware recap recon malware scammer security of portable router tech support scam tech support scams tor trojan two-factor authentication weekly blog roundup

(Read more…)

The post A week in security (September 10 – 16) appeared first on Malwarebytes Labs.

MalwareBytes Security

Is two-factor authentication (2FA) as secure as it seems?

September 14, 2018 admin 101, 2fa, biometrics, brute force, Facebook, fake login, FYI, mfa, multi-factor authentication, Password reset, phishing, Social engineering, third-party login, totp, two-factor authentication

Credit to Author: Pieter Arntz| Date: Fri, 14 Sep 2018 15:00:00 +0000

Two factor authentication (2fa) was introduced to enhance login security, but does it always work as advertised? Or can it be bypassed?

Categories:

Tags: 2fa biometrics brute force facebook fake login mfa multi-factor authentication password reset phishing Social Engineering third-party login totp two-factor authentication

Kaspersky Security

Making two-factor authentication much stronger in two easy steps

September 12, 2018 admin 2fa, Advice, Android, iOS, iPhone, smartphones, Tips, two-factor authentication

Credit to Author: Sarah Pike| Date: Wed, 12 Sep 2018 14:18:31 +0000

Speaking of two-factor authentication — as we often do — did you know some convenient settings render it utterly useless? Let’s do it right.

Kaspersky Security

Hijacking online accounts through voicemail

August 17, 2018 admin 2fa, black hat, blackhat, def con, DEF CON 26, hacking, news, online services, Paypal, Threats, two-factor authentication, voicemail, WhatsApp

Credit to Author: Alex Drozhzhin| Date: Fri, 17 Aug 2018 15:50:43 +0000

When it comes to online accounts, voicemail is a major security hole. Here’s why.

Independent Krebs

Reddit Breach Highlights Limits of SMS-Based Authentication

August 1, 2018 admin 2fa, Authy, data breaches, google, Google Authenticator, number port-out scams, Reddit breach, Security Keys, Security Tools, totp, twofactorauth.org, Yubico

Credit to Author: BrianKrebs| Date: Thu, 02 Aug 2018 00:55:17 +0000

Reddit.com today disclosed that a data breach exposed some internal data, as well as email addresses and passwords for some Reddit users. As Web site breaches go, this one doesn’t seem too severe. What’s interesting about the incident is that it showcases once again why relying on mobile text messages (SMS) for two-factor authentication (2FA) can lull companies and end users into a false sense of security.

Independent Krebs

Google: Security Keys Neutralized Employee Phishing

July 23, 2018 admin 2fa, chrome, Dashlane, dropbox, Duo Security, Edge, Facebook, FIDO Alliance, Firefox, Firefox Quantum, GitHub, Google Advanced Protection, Keepass, lastpass, microsoft, opera, safari, Security Keys, Security Tools, U2F, Web Authentication API, WebAuthn, World Wide Web Consortium, Yubikey

Credit to Author: BrianKrebs| Date: Mon, 23 Jul 2018 11:34:38 +0000

Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place of passwords and one-time codes, the company told KrebsOnSecurity.