Security News

1Kosmos announced the availability of its Passwordless Identity Package. The 1Kosmos PIP provides enterprises a risk-free, scalable passwordless authentication solution.

The Entrust Remote Signing Service provides verified employee identities and strong authentication, which can help facilitate compliance with legal and regulatory requirements. The Entrust Remote Signing Service lets Entrust take care of issuing, storing, and maintaining the signing infrastructure for the customer, with seamless integration to the customer's document workflow application.

Apple this week updated its Platform Security Guide to provide more details on a couple of recently announced authentication features. Apple's Platform Security Guide contains detailed technical information on the security technologies and features implemented in its products.

Physical security keys introduce a new twist to 2FA. Instead of using a code delivered to your phone, the hardware-based key is a dongle you insert into your company laptop or other registered access device. The private key remains on the device, while the public key is sent to the site with which it is registered.

LoginID announced the launch of its WordPress plugin. The plugin is free to install, and enables websites powered by WordPress to install strong passwordless authentication in five clicks.

BIO-key International introduced its new mobile app, BIO-key MobileAuth with PalmPositive the latest among over sixteen strong authentication factors available for BIO-key's PortalGuard Identity-as-a-Service platform. MobileAuth's fast, touchless biometric user authentication - using a palm scan - works with any Android or iOS device to provide the unprecedented combination of a simple, privacy-protected, and convenient user experience with the identity integrity and availability that enterprises require.

Google strives to push all its users to start using two-factor authentication, which can block attackers from taking control of their accounts using compromised credentials or guessing their passwords. To enroll in two-factor authentication for your Google Account right now, go here and click the "Get Started" button to add an extra layer of security and block attackers from gaining access to your data.

Echoworx announced the introduction of biometric authentication to its Echoworx Email Encryption platform, enabling secure passwordless authentication options. By leveraging biometrics, along with their growing list of seven authentication options, Echoworx enables enterprises with the option to access encrypted communications in seconds, without the need for registration, questions or passwords.

TrustGrid announced a new use case for its platform to provide citizens with a secure digital vaccine passport that can be stored on their smartphone. Designed using distributed ledger technology, TrustGrid is an opt-in system where citizens can authenticate their identity and vaccination status and receive a QR code to show as proof of vaccination.

A variety of attack tools by a variety of threat actors are involved in exploiting the Pulse Secure systems, including four variants of a novel malware family FireEye/Mandiant has named SLOWPULSE. Three of the four variants of SLOWPULSE allow attackers to bypass two-factor authentication mechanisms in the VPN system. There is no information yet as to whether or which industrial or critical infrastructure sites might have been targeted.