Security News
Apple this week updated its Platform Security Guide to provide more details on a couple of recently announced authentication features. Apple's Platform Security Guide contains detailed technical information on the security technologies and features implemented in its products.
Physical security keys introduce a new twist to 2FA. Instead of using a code delivered to your phone, the hardware-based key is a dongle you insert into your company laptop or other registered access device. The private key remains on the device, while the public key is sent to the site with which it is registered.
LoginID announced the launch of its WordPress plugin. The plugin is free to install, and enables websites powered by WordPress to install strong passwordless authentication in five clicks.
BIO-key International introduced its new mobile app, BIO-key MobileAuth with PalmPositive the latest among over sixteen strong authentication factors available for BIO-key's PortalGuard Identity-as-a-Service platform. MobileAuth's fast, touchless biometric user authentication - using a palm scan - works with any Android or iOS device to provide the unprecedented combination of a simple, privacy-protected, and convenient user experience with the identity integrity and availability that enterprises require.
Google strives to push all its users to start using two-factor authentication, which can block attackers from taking control of their accounts using compromised credentials or guessing their passwords. To enroll in two-factor authentication for your Google Account right now, go here and click the "Get Started" button to add an extra layer of security and block attackers from gaining access to your data.
Echoworx announced the introduction of biometric authentication to its Echoworx Email Encryption platform, enabling secure passwordless authentication options. By leveraging biometrics, along with their growing list of seven authentication options, Echoworx enables enterprises with the option to access encrypted communications in seconds, without the need for registration, questions or passwords.
TrustGrid announced a new use case for its platform to provide citizens with a secure digital vaccine passport that can be stored on their smartphone. Designed using distributed ledger technology, TrustGrid is an opt-in system where citizens can authenticate their identity and vaccination status and receive a QR code to show as proof of vaccination.
A variety of attack tools by a variety of threat actors are involved in exploiting the Pulse Secure systems, including four variants of a novel malware family FireEye/Mandiant has named SLOWPULSE. Three of the four variants of SLOWPULSE allow attackers to bypass two-factor authentication mechanisms in the VPN system. There is no information yet as to whether or which industrial or critical infrastructure sites might have been targeted.
HYPR, a company that provides a cloud-based passwordless authentication platform, has raised $35 million in a Series C financing, doubling the company's total funding to more than $70 million. The company's multi-factor authentication technology helps companies go passwordless by leveraging the convenience of a smartphone with the added security of a smart card.
HID Global announced the general availability WorkforceID Authentication, the latest addition to its cloud platform for creating a seamless, effortless experience for issuing, managing and using identity credentials in physical and digital workplaces. "A person's identity has become the new security perimeter in a hybrid workplace that now extends from home to the office and everywhere in between," said Julian Lovelock, VP Global Business Segment, IAM, with HID Global.