Security News > 2020 > October

There was a time when open source was still - no matter how many decades it had driven software projects - regarded as the playground of hippies and utopians. As incumbent vendors saw sense and bolted open source offerings onto their product load-outs, or even acquired celebrated open source gathering spots outright, open source suddenly became cool.

Whether decreasing the number of passwords required through single sign-on or eliminating the password altogether in favor of a strong authentication factor, the priority is on the workforce experience. At the same time, we've asked users to create longer passwords, more complex passwords, unique passwords.

How does confidential computing enhance the overall security of a complex enterprise architecture? How is confidential computing helping large organizations with a massive work-from-home movement?

These findings indicate that as SOCs continue to mature, they will deploy next-gen tools and capabilities at an unprecedented rate to address gaps in security. Further, the scale of technology needed to secure today's digital assets means SOC teams are relying more heavily on tools to effectively do their jobs.

The threat actor behind the Ryuk ransomware continues to conduct attacks following the recent attempts to disrupt the TrickBot botnet, CrowdStrike reports. Referred to as WIZARD SPIDER, the adversary has been widely using TrickBot for the distribution of ransomware, and the recent attempts by the U.S. Cyber Command and Microsoft to disrupt the botnet were expected to put an end to such operations.

While initial news reports predicted a sharp uptick in cyber threats after the pandemic took hold, data on confirmed security incidents and genuine threats to customers show the threat level is largely unchanged. Instead, major changes in organizational and IT infrastructure to support remote work created new vulnerabilities for threat actors to exploit.

Singapore will become the world's first country to use facial verification in its national ID scheme, but privacy advocates are alarmed by what they say is an intrusive system vulnerable to abuse. The technology captures a series of photos of a person's face in various lights.

In the aftermath of the COVID-19 pandemic, global biometric device revenues are expected to drop 22%, to $6.6 billion, according to a report from ABI Research. The entire biometrics market will regain momentum in 2021 and is expected to reach approximately $40 billion in total revenues by 2025.

Entrust announced the Sigma Instant Desktop Issuance solution, a direct-to-card solution for instant physical and mobile ID issuance. Equipped with cloud-based APIs, Sigma systems bring issuance to the cloud without additional hardware - enabling instant printing for both physical IDs, badges and payment cards.

An online platform designed to help IoT vendors receive, assess, manage and mitigate vulnerability reports has been launched by the IoT Security Foundation. VulnerableThings.com aims to simplify the reporting and management of vulnerabilities whilst helping IoT vendors comply with new consumer IoT security standards and regulations.