authentication Archives

Stealing cookies: Researchers describe how to bypass modern authentication

Passwordless authentication standards have improved identity security, but new research indicates this technology is vulnerable to token hijacks and man-in-the-middle attacks.

May 6, 2024 By Derek B. Johnson

Microsoft upgrades security for signing keys in wake of Chinese breach

Policymakers and researchers have sharply criticized Microsoft’s security practices after an illicitly obtained key enabled a wide-ranging espionage operation.

Nov 2, 2023 By Elias Groll AJ Vicens

The rise of hassle-free and secure authentication

Okta's Federal CSO discusses the rise of passwordless authentication and the need for enhanced web application security.

Jul 14, 2023 By Scoop News Group

Government learns that authenticators are key part of modernization

As federal telework inspires movement to zero-trust models, agencies are figuring out what methods work best for them, an authentication expert says.

Nov 6, 2020 By Scoop News Group

apple sign in — The research comes a year after Apple unveiled the “Sign in with Apple” feature, which authenticates users on apps without disclosing their Apple IDs. (Pexels)

Researcher claims $100,000 for ‘Sign in with Apple’ hack

It highlights the big payouts Apple has been offering through a bug bounty program it expanded last year.

Jun 1, 2020 By Sean Lyngaas

google smartphone security — Google’s update Wednesday is a significant step to enhancing adoption of better security practices. (Getty)

Google makes safe logins more convenient by allowing smartphones to be security keys

It's the latest anti-phishing effort from Google's Advanced Protection team.

Jan 15, 2020 By Jeff Stone

authentication, payment, QR code, 2FA, passwordless — QR codes can be used for authentication. (Getty Images)

Authentication startup Trusona raises $20 million by promising to help clients ditch passwords

Trusona is working with the likes of Microsoft and the health care company Aetna.

Jan 14, 2020 By Jeff Stone

Google to replace Titan keys for free after uncovering Bluetooth flaw

The vulnerability would require an outsider to already have obtained a victim's username and password.

May 15, 2019 By Jeff Stone

Artwork of the video game “Fortnite” (Epic Games)

Epic Games login tokens were susceptible to theft, research shows

Researchers say it was possible to hijack old Epic Games domains and use them break into other users' accounts.

Jan 16, 2019 By Zaid Shoorbajee

new yubikey — The YubiKey for Lightning, left, and the Security Key NFC , right, announced at CES 2019 (Yubico)

Yubico unveils new NFC key, developing a Lightning-enabled key

Yubico unveiled two new security keys CES as it makes its line work across more platforms. But a key geared specifically for Apple products won't reach consumers'…

Jan 8, 2019 By Zaid Shoorbajee