The WiKID Blog, musings on two-factor authentication, information security and some other stuff.
Yet another reason to add two-factor authentication to your admin accounts
Posted by: admin 6 years, 8 months ago
Seems like we just made the case for requiring two-factor authentication for Cisco Admins due to the SYNFul attack. Now here's another one.
SYNFUL attack shows the need for 2FA on routers
Posted by: admin 6 years, 8 months ago
Cisco has confirmed that the SYNFUL attacks discovered byFireEye are not the result of a vulnerability but rather:
Why you need a stand-alone two-factor authentication server
Posted by: admin 6 years, 8 months ago
We do a fair amount of testing and documentation for commercial and open-source VPNs (Cisco, SonicWall, Sophos, Checkpoint, etc, etc). Increasingly, we see VPNs embedding some type of two-factor authentication into their product. The idea is to make it simple to add 2FA to your VPN services, a laudable goal and perhaps sufficient for some small organizations. So, when should you consider using a stand-alone service instead?
BSidesLV 2013 Video List
Posted by: admin 6 years, 8 months ago
UPDATE: It was pointed out that these are the videos for 2014. DUH. Learn to read before rushing off to try to help.
How to Increase the Likelihood that your Security Risk Recommendations are accepted
Posted by: admin 6 years, 9 months ago
Via @adamshostack came this post by @lennyzeltser Why Business Managers Ignore IT Security Risk Recommendations.
Recent Posts
- Log4j CVE-2021-44228
- Questions about 2FA for AD admins
- WiKID Android tokens had their data deleted over the weekend by Google Chrome bug
- Scalability improvements in version 5.0 of the WiKID Strong Authentication server
- 5.0 Released!
Archive
2021
2019
2018
2017
2016
2015
2014
- December (2)
- November (3)
- October (3)
- September (5)
- August (4)
- July (5)
- June (5)
- May (2)
- April (2)
- March (2)
- February (3)
- January (1)
2013
2012
- December (1)
- November (1)
- October (5)
- September (1)
- August (1)
- June (2)
- May (2)
- April (1)
- March (2)
- February (3)
- January (1)
2011
2010
- December (2)
- November (3)
- October (3)
- September (4)
- August (1)
- July (1)
- June (3)
- May (3)
- April (1)
- March (1)
- February (6)
- January (3)
2009
- December (4)
- November (1)
- October (3)
- September (3)
- August (2)
- July (5)
- June (6)
- May (8)
- April (7)
- March (6)
- February (4)
- January (427)
2008
- December (1)
Categories
- PCI-DSS (2)
- Two-factor authentication (3)
Tags
- wireless-cellular-mobile-devices (7)
- Two-factor authentication (10)
- Wireless, cellular, mobile devices (6)
- NPS (1)
- Phishing and Fraud (111)
- Active Directory (1)
- pam-radius (3)
- privileged access (2)
- Cloud Security (10)
- Mutual Authentication (60)
- Web Application Authentication (1)
- Authentication Attacks (99)
- pci (50)
- Security and Economics (97)
- WiKID (133)
- pam (2)
- VPN (1)
- Installation (2)
- RADIUS Server (1)
- Open Source (64)
- Tutorial (2)
- Strong Authentication (35)
- Information Security (137)
- Transaction Authentication (13)
- Miscellaneous (100)
- Linux (2)
- transaction-authentication (6)
- Two Factor Authentication (254)