2fa – Computer Security Articles

5 simple steps to securing your remote employees

September 4, 2019 admin 2fa, approved device list, bring your own device, Business, BYOD, encryption, Find My iPhone, Find my Mobile, governance, IDG Connect, jailbreak, Man In The Middle, man-in-the-middle attack, multi-factor authentication, passcode, Password, public wi-fi, RBAC, remote, remote employees, remote wiping, remote workforce, role-based access control, single-sign on, sso, two-factor authentication, VPN

Credit to Author: David Ruiz| Date: Wed, 04 Sep 2019 14:06:26 +0000

Modern businesses require modern cybersecurity, and modern cybersecurity means more than just implementing the latest tech. It also means implementing good governance.

Categories:

Business

Tags: 2fa approved device list bring your own device byod encryption Find my iPhone Find my Mobile governance IDG Connect jailbreak man-in-the-middle man-in-the-middle attack multi-factor authentication passcode password public Wi-Fi RBAC remote remote employees remote wiping remote workforce role-based access control single sign-on sso two-factor authentication vpn

(Read more…)

The post 5 simple steps to securing your remote employees appeared first on Malwarebytes Labs.

MalwareBytes Security

TrickBot adds new trick to its arsenal: tampering with trusted texts

September 3, 2019 admin 2fa, account takeover fraud, ATO, Authy, C&C, Dell Secureworks, dynamic webinject, dyreza, emotet, Eternal Romance, EternalBlue, EternalChampion, Gold Blackburn, Google Authenticator, hasherezade, point-of-sale, port-out fraud, pos, SIM hijacking, SIM swapping, Sprint, T-Mobile, thetrick, trickbot, trickloader, trickster, Trojan.TrickBot, trojans, two-factor authentication, Verizon Wireless

Credit to Author: Jovi Umawing| Date: Tue, 03 Sep 2019 15:26:01 +0000

TrickBot’s latest feature allows it to tamper with the web sessions of users from Verizon, T-Mobile, and Sprint mobile carriers.

Categories:

Trojans

Tags: 2fa account takeover fraud ATO Authy C&C Dell Secureworks dynamic webinject dyreza emotet Eternal Romance EternalBlue EternalChampion Gold Blackburn Google Authenticator hasherezade point-of-sale port-out fraud POS SIM hijacking SIM swapping Sprint T-Mobile thetrick trickbot trickloader trickster Trojan.TrickBot two-factor authentication Verizon Wireless

MalwareBytes Security

Data and device security for domestic abuse survivors

August 13, 2019 admin 2fa, Android, App Store, cloud storage, Data Security, device security, domestic abuse, domestic abuse survivor, domestic violence, encryption, end-to-end encryption, Google Play, google play store, iMessage, iOS, national domestic violence hotline, National Network to End Domestic Violence, passcode, privacy, secure messaging, Security, signal, spyware, stalkerware, two-factor authentication, WhatsApp, wire

Credit to Author: David Ruiz| Date: Tue, 13 Aug 2019 16:33:22 +0000

Many domestic abuse survivors need help before stalkerware strikes. Here, we give basic advice on device security and protecting sensitive data.

Categories:

Privacy

Tags: 2fa Android App Store cloud storage data security device security domestic abuse domestic abuse survivor domestic violence encryption end-to-end encryption Google Play Google Play Store iMessage iOS national domestic violence hotline National Network to End Domestic Violence passcode secure messaging security signal spyware stalkerware two-factor authentication whatsapp wire

MalwareBytes Security

8 ways to improve security on smart home devices

August 7, 2019 admin 2fa, Alexa, google home, Internet of Things, IoT, privacy, secure passwords, smart device, smart devices, smart home assistant

Credit to Author: Kayla Matthews| Date: Wed, 07 Aug 2019 15:00:00 +0000

Smart home devices aren’t the most secure, but they do make life more convenient. How can those who’ve embraced smart home tech stay as secure as possible? Here are eight ways.

Categories:

Tags: 2fa alexa Google Home Internet of Things IoT privacy secure passwords smart device smart devices smart home assistant

(Read more…)

The post 8 ways to improve security on smart home devices appeared first on Malwarebytes Labs.

Independent Krebs

The Risk of Weak Online Banking Passwords

August 5, 2019 admin 2fa, Aite Group, alex holden, Alissa Knight, Brian Costello, Financial Data Exchange, Hold Security, Latest Warnings, Mint, Paypal, Plaid, The Coming Storm, YNAB, Yodlee, Zelle

Credit to Author: BrianKrebs| Date: Mon, 05 Aug 2019 14:04:27 +0000

If you bank online and choose weak or re-used passwords, there’s a decent chance your account could be pilfered by cyberthieves — even if your bank offers multi-factor authentication as part of its login process. This story is about how crooks increasingly are abusing third-party financial aggregation services like Mint, Plaid, Yodlee, YNAB and others to surveil and drain consumer accounts online.

Kaspersky Security

Dear YouTubers, phishers are after your accounts

May 7, 2019 admin 2fa, e-mail, google, news, passwords, phishing, social media, Threats, Youtube

Credit to Author: Marina Mash| Date: Tue, 07 May 2019 13:13:11 +0000

This phishing campaign is so convincing that even savvy YouTubers may be duped into giving crooks control of their accounts.

Kaspersky Security

Cybercriminals intercept codes used for banking to empty your accounts

February 5, 2019 admin 2fa, banking, news, SS7, Threats

Credit to Author: Marvin the Robot| Date: Fri, 01 Feb 2019 17:02:30 +0000

Crooks hacked telecom protocol SS7 to steal banking two-factor authentication codes.

Kaspersky Security

Cyber criminals intercept codes used for banking – to empty your accounts

February 1, 2019 admin 2fa, banking, news, SS7, Threats

Credit to Author: Marvin the Robot| Date: Fri, 01 Feb 2019 17:02:30 +0000

Telecom protocol SS7 hacked by crooks to steal your banking two-factor authentication codes.

Kaspersky Security

Change Your Password Day Strong Password Day

February 1, 2019 admin 2fa, GReAT, password manager, passwords, Threats, Tips, two-factor authentication

Credit to Author: Alex Drozhzhin| Date: Fri, 01 Feb 2019 14:12:22 +0000

Changing passwords regularly is outdated. Use strong and unique passwords that are easy to remember instead. Here’s how to make them.

MalwareBytes Security

A week in security (January 21 – 27)

January 28, 2019 admin 2019 State of Malware report, 2fa, ALPR, Android malware, anpr, Ars Technica, Bleeping Computer, crytekk, crytekk ransomware, Dark Reading, fortnight, GDPR, GoDaddy, Help Net Security, KrebsOnSecurity, Mitsubishi, modlishka, phishing, recap, Security Week, Security world, Techcrunch, The Wall Street Journal, vishing, voicemail phishing, Vulnerability, Week in security, weekly blog roundup, Youtube

Credit to Author: Malwarebytes Labs| Date: Mon, 28 Jan 2019 18:00:14 +0000

A roundup of last week’s security news from January 21 to 27, including Modlishka, Crytekk, PUPs, and the State of Malware report.

Categories:

Tags: 2019 State of Malware report 2fa ALPR android malware anpr Ars Technica Bleeping Computer crytekk crytekk ransomware Dark Reading fortnight gdpr GoDaddy Help Net Security KrebsOnSecurity mitsubishi modlishka phishing recap Security Week TechCrunch The Wall Street Journal vishing voicemail phishing vulnerability week in security weekly blog roundup youtube

(Read more…)

The post A week in security (January 21 – 27) appeared first on Malwarebytes Labs.

MalwareBytes Security

Has two-factor authentication been defeated? A spotlight on 2FA’s latest challenge

January 21, 2019 admin 2fa, 2FA modlishka, Amnesty International, CERTFA, cybercrime, defeat 2FA, mantis, modlishka, password manager, PGP, Social engineering, the return of charming kitten, totp, two-factor authentication

Credit to Author: Malwarebytes Labs| Date: Mon, 21 Jan 2019 16:15:30 +0000

While many tech-savvy folks are familiar with two-factor authentication (2FA), more are unaware that there are several ways around it. A tactic called Modlishka, the English pronunciation for the Polish word for “mantis,” is the latest in this list.

Categories:

Tags: 2fa 2FA modlishka Amnesty International CERTFA defeat 2FA mantis modlishka password manager PGP Social Engineering the return of charming kitten totp two-factor authentication

← Previous