Tag Archive for: Enabling

Sen. Ron Wyden wants feds to investigate Microsoft for cyber failings enabling Chinese hack

/in


Sen. Ron Wyden wants federal investigators to probe Microsoft’s cybersecurity services that the Oregon Democrat said enabled a China-linked hack of the Biden administration.

China-based cyberattackers stole email data in a hacking campaign this year directed at the U.S. government that disrupted the Commerce Department, according to government officials and Microsoft.

As federal officials investigate those breaches, Mr. Wyden said Microsoft deserves most of the blame. He contended that in a letter to federal agencies last week requesting they hold the Big Tech company accountable.

“While Microsoft’s engineers should never have deployed systems that violated such basic cybersecurity principles, these obvious flaws should have been caught by Microsoft’s internal and external security audits,” the senator wrote. “That these flaws were not detected raises questions about what other serious cybersecurity defects these auditors also missed.”

Source…

VinCSS Applauded by Frost & Sullivan for Enabling the Protection of Users, Devices, and Data from Password-related Attacks with Its Robust IAM Security Approach

/in


The simple, flexible, and secure IAM approach mitigates data breach risks and damages, enhances the user experience, optimizes operations, saves on operational costs, and strengthens security.

SAN ANTONIO, Nov. 24, 2022 /PRNewswire/ — Recently, Frost & Sullivan researched the Southeast Asian (SEA) passwordless authentication industry and, based on its assessment results, recognizes VinCSS with the 2022 SEA Enabling Technology Leadership Award for passwordless authentication. The company develops passwordless authentication solutions that use the FIDO2 protocol to make them true passwordless solutions, with no primary password needed. The company offers reliable passwordless identity and access management (IAM) solutions that help customers minimize the need for passwords; reduce the friction, complexity, and risks associated with passwords and their related requirements; and increase the operational efficiency of IAM strategies.

VinCSS developed a comprehensive FIDO2 ecosystem to ensure strong or passwordless authentication using seven solutions, encompassing servers, Internet of Things (IoT) and cloud services, transformation services, and software development kits (SDKs). To cater to the rising demand for IoT security, VinCSS’s new IoT FIDO Device Onboarding (FDO) solution securely sets up and configures IoT devices automatically. FDO, developed by FIDO Alliance, is an automated onboarding protocol that addresses IoT device security concerns and leverages asymmetric public key cryptography to provide industrial IoT with a fast and secure way to onboard devices to any device management system. This capability makes devices more resistant to attacks by substituting highly secure cryptographic keys for generic password credentials.

According to Anh Tien Vu, Frost & Sullivan Best Practices Research Industry Principal, “The FIDO2 ecosystem enables businesses to address multiple use cases, including eliminating credential replay attacks with user presence checks to prevent malware hacking, providing authentication standard enforcement to ensure supply chain security and addressing authentication redundancy to fast-track and support better compliance and audit requirements.”

The…

Source…

Bitglass Report Shows Enterprises Increasing Risk by Enabling BYOD

/in


Securing BYOD to prevent data loss/theft is a top concern.

A new Bitglass report shows that despite the surge in enterprises enabling bring your own device (BYOD), many are unprepared for the associated risks.

Bitglass’ 2021 BYOD Security Report show the rapid adoption of unmanaged personal devices connecting to work-related resources. It also highlights how organizations are ill-equipped to deal with growing security threats such as malware and data theft.

The Bitglass report is a joint venture with Cybersecurity Insiders. It surveyed hundreds of cybersecurity professionals across industries to better understand how COVID-19’s resulting surge of remote work has affected security and privacy risks introduced by the use of personal mobile devices.

The insights in this report are especially relevant. That’s because more enterprises are shifting to permanent remote work or hybrid work models. That means connecting more devices to corporate networks and, as a result, expanding the attack surface.

Enterprises Left Vulnerable

Anurag Kahol is CTO and co-founder of Bitglass.

Bitglass' Anurag Kahol

Bitglass’ Anurag Kahol

“Despite 82% of enterprises enabling BYOD to some capacity, many are still highly unprepared for the risks associated with unmanaged devices,” he said. “Fifty-one percent of the surveyed organizations don’t have any means of identifying vulnerabilities associated with malicious Wi-Fi on personal devices. Even more surprisingly, 49% are unsure or unable to detect whether malware has been downloaded in the last 12 months.”

Key findings from the Bitglass report:

  • BYOD is here to stay. Use of personal devices has helped businesses improve employee productivity and satisfaction, while also reducing costs. However, challenges associated with managing device access and mobile security remain.
  • Securing BYOD to prevent data loss/theft is a top concern. Respondents are most concerned about data leakage. Other apprehensions included users downloading unsafe apps or content, lost or stolen devices, and unauthorized access to company data and systems.
  • Enterprises are running blind when it comes to securing BYOD devices against modern security threats. For example, 22%  of…

Source…

Cisco Shapes the Future of Work with New Solutions Enabling Trusted Workplaces and Safe Return to Office

/in


SAN JOSE, Calif., March 25, 2021 /PRNewswire/ —

News Summary:  

Cisco Shapes the Future of Work with New Solutions Enabling Trusted Workplaces and Safe Return to Office
Cisco Shapes the Future of Work with New Solutions Enabling Trusted Workplaces and Safe Return to Office
  • New Cisco networking, security, cloud and collaboration solutions help businesses reimagine how they work while keeping employees safe, connected and productive.
  • Solutions address fears over the return to the office, the demand for a safe workplace, and IT tools that connect hybrid workforces in new ways.
  • Builds on Cisco’s continued commitment to drive an inclusive recovery, including addressing the need for a secure and collaborative work environment that is accessible from anywhere.

From the beginning of the pandemic and throughout the recovery journey, Cisco has remained committed to helping people and communities around the world drive an inclusive recovery. As part of the ongoing effort, today, Cisco announced the availability of purpose-built technology and solutions that help companies reimagine how they work – and keep employees safe.

Whether an organization’s goal is to bring people back into the office, or to evolve support for a remote or hybrid workforce, Cisco’s new innovations – and the breadth of Cisco’s networking, security, cloud and collaboration portfolio – support multiple options to create a Trusted Workplace that helps enable a Safe-Return-to-Office and a Secure Remote Workforce: from automating, securing, and scaling network connectivity, to social density and proximity insights for employee health and safety, to securely bringing people together to work however and wherever they want through Webex and collaboration devices that leverage AI, sensors and alerts.

For a tour of these Cisco technologies, watch this video.

Recent research shows:

  • A real fear of returning to the office, with 95% of respondents uncomfortable about returning to the office given the current health crisis1
  • The desire for more advanced tools, with 96% of respondents wanting intelligent technology to improve work environments2
  • More prioritization of the employee experience, with 86% of respondents stating that empowering a distributed workforce with seamless access to applications and high-quality…

Source…