Authentication

Authentication news, information, and how-to advice

Salesforce.com warns customers of malware attack

A new version of the Dyreza online banking Trojan is stealing Salesforce.com log-in credentials

Apple CEO says iCloud security will be strengthened

Two-factor authentication will be enabled on iCloud, along with more warnings for certain account actions


Why you don't need long, complex passwords

These days, hackers steal passwords wholesale, not one by one, which is why you can ignore outdated password practices

Firefox OS to outdo Android with granular application permissions

Starting with Firefox OS 2.1, users will reap privacy and security benefits by being able to control application-specific permissions

Revoke certificates when you need to -- the right way

A secure Internet runs off the assurance of digital certificates. Revoking those certificates is often necessary, but problematic. Here's your best shot at doing it effectively

Fear the golden ticket attack!

Be afraid of the golden ticket attack -- if malicious hackers can create the tickets, they can wreak whatever havoc they please

Amazon protects its virtual desktops with two-factor authentication

The company's WorkSpaces service can be used with hardware tokens from Gemalto

10 things you need to know about Microsoft's Surface Pro 3

The Surface Pro 3 sports some impressive capabilities. Here's the scoop on its software to its performance to its sound and camera

7 ways DARPA is trying to kill the password

From analyzing the way you walk to your heartbeat, these futuristic authentication systems could be here soon

The Azure-Active Directory connection just got easier

Microsoft releases AAD Connect, a new wizard-driven tool to help ease the connection

Two glimmers of hope for enterprise security

Will the endless stream of security compromises ever stop? No single security product can deliver salvation, but two new solutions, PingID and Tanium, show real promise

Ping Identity wants to replace sign-ons with smartphones

PingID allows enterprise users to sign onto any service or system with a swipe of their smartphones

Critical design flaw in Active Directory could allow for a password change

Microsoft contends the general issue has been long-known, but Israel-based Aorato has developed a working attack

Botnet uses brute force to access PoS systems

A new malware threat scans the Internet for PoS systems and tries to access them using common usernames and passwords

Mocana aims to simplify mobile access to enterprise apps with Atlas

The platform lets users access all apps wrapped with Mocana's MAP technology using single sign-on

Companies warned of major security flaw in Google Play apps

Many Android apps on Google Play contain authentication keys that can be easily taken to steal corporate and personal data

Russian forensic firm's tool snags iCloud backups without an Apple ID

The new tool from Elcomsoft, intended for law enforcement, only works under certain conditions

Review: The best password managers for PCs, Macs, and mobile devices

6 local and cloud-based password managers make passwords stronger and online life easier for Windows, Mac, iOS, Android, BlackBerry, and Windows Phone users

New Apps security feature causes confusion among Google users

Prompts to enter their cellphone number for Google Apps account verification caused a spike in support questions from puzzled users

5 lessons from companies that get computer security right

Computer security is in tatters -- but not everywhere. Learn from the companies that know what they're doing

Load More