NIS2 compliance: How to get passwords and MFA right

NIS2 puts identity and access controls under the spotlight, with weak passwords and poor authentication now a compliance risk. Specops Software explains how to align password policies and MFA with ...

Fortinet warns of 5-year-old FortiOS 2FA bypass still exploited in attacks

Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows ...
Forbes

Microsoft Issues Mandatory 2FA Login Deadline Alert

Microsoft's public cloud computing platform, Azure, was recently targeted by a cyberattack that led to a multi-hour outage. While a newly announced mandatory two-factor authentication login ...
Tech.co

How to Turn on Two-Factor Authentication

If you haven’t seen your data exposed in a major data breach within the last five years alone, you haven’t been paying attention. Billions of people worldwide have lost their data many times over. 26 ...
Fox News

Top multi-factor authentication apps to protect your accounts

Hackers often exploit reused passwords, gaining access to multiple accounts if just one is compromised. To stay safe, use strong, unique passwords for every account and change them regularly. However, ...
Lifehacker

Two-Factor Authentication Can Fail You, but You Can Make It More Secure

Two-factor authentication (2FA) is a great way to boost the security of your accounts. But even with that added layer of security, malicious actors are finding ways to break in. So-called adversary-in ...
Connecticut College Arboretum

Multi-Factor Authentication Policy

The purpose of this policy is to define requirements for accessing Connecticut College's network and information systems securely. These standards are designed to minimize the potential security ...
The Hacker News

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability

Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication in specific LDAP setups.
Tidbits

Reacting to Unsolicited Two-Factor Authentication Codes

I have long encouraged the use of two-factor authentication (2FA) or two-step verification (2SV) with online accounts whenever possible (for more about the difference, see “Two-Factor Authentication, ...
Lifehacker

How to Spot Malicious Two-Factor Authentication Prompts

With hackers looking for any way they can to gain access to your personal information via every form of phishing scheme, it's critical to take every precaution to protect your data. Multi-factor (MFA) ...
Business Insider

My phone plan nightmare

Two years ago, I got a new phone number. In the eyes of my social media and ride-hailing apps, Amazon, my bank, and the state of Pennsylvania, that effectively meant I lost my identity. Only recently ...