Researchers Disclose New Methods for Replacing Content in Signed PDF Files
A team of researchers from the Ruhr University Bochum in Germany has disclosed a series of new attack methods against signed PDF files. Dubbed...
Identity & Access
Mozilla Joins Apple, Google in Reducing TLS Certificate Lifespans
Mozilla is the latest browser maker to have announced updated policies that would reduce the lifetime of TLS (Transport Layer Security) certificates. Currently, SSL/TLS...
Cybercrime / Data Protection / Fraud & Identity Theft / Identity & Access / NEWS & INDUSTRY / Phishing
Over 5 Billion Unique Credentials Offered on Cybercrime Marketplaces
More than 15 billion username and password pairs have been offered on cybercrime marketplaces, including over 5 billion unique credentials, according to a report...
Identity & Access / Management & Strategy / NEWS & INDUSTRY / Risk Management / Security Infrastructure
NSA Publishes Recommendations on Securing IPsec VPNs
The National Security Agency (NSA) has published a series of recommendations on how to properly configure IP Security (IPsec) Virtual Private Networks (VPNs). Used...
Two Musts for Managing a Remote Workforce: Identity Governance and Lifecycle
Rethinking These Familiar Terms to Address New Ways of Working Identity governance and lifecycle have always been fundamental to controlling user access and visibility...
e-Learning Platform OneClass Exposed Data on Students, Lecturers
An Elasticsearch database pertaining to e-learning platform OneClass was found to expose data on over one million students and lecturers, vpnMentor reveals. Headquartered in...
Non-Human Identities: The New Blindspot in Cybersecurity
Since the introduction of computers, usernames and passwords have been the primary method used for access control and authentication. However, as post-mortem analysis of...
Data Protection / Identity & Access / Management & Strategy / NEWS & INDUSTRY / Privacy / Privacy & Compliance
Zoom Will Offer End-to-End Encryption to Free Users
Zoom announced on Wednesday that it has decided to offer end-to-end encryption to free users after all, as long as they verify their account...
Apple Releases Open Source Password Manager Resources
Apple has announced the availability of a series of open source tools designed to foster collaboration between password manager developers. Published on GitHub in...
Identity & Access / Management & Strategy / Mobile & Wireless / Mobile Security / NEWS & INDUSTRY / Virus & Threats
Google Announces New Additions to Advanced Protection Program
Google this week announced expansions to the Advanced Protection Program, with the addition of Google Nest and support for more types of security keys...