Tag Archive for: teams

1Password Teams offers effortless and secure password management for a flat monthly price

/in


1Password is a powerful and secure way to store passwords and other important information like documents, credit cards, and more. 1Password Teams takes this experience up a notch, allowing up to 10 employees to use 1Password.

1Password Teams is available for a flat monthly price, so work flows, collaboration thrives, and productivity soars. Here’s everything you need to know.

1Password keeps businesses safe by protecting the individuals who work there – by defending the workforce at an individual level, 1Password empowers businesses with greater visibility, control, and peace of mind. It’s available across every platform, including Mac, iPhone, iPad, Windows, Android, and more, and it combines industry-leading security with award-winning design. Here’s some of the information you and your employees can easily store in 1Password:

  • Passwords and logins
  • Secure notes
  • Medical records
  • Social security number
  • Credit cards
  • Drivers licenses
  • Software licenses
  • …and much more

Everything you store in 1Password is protected with industry-leading security and is accessible via an award-winning design. Your 1Password data is locked behind an Account Password and a Secret Key:

  • Your Account Password protects your data on your devices. Only you know your Account Password: it’s never stored alongside your data or sent over the network. It protects your data if someone has access to your device.
  • Your Secret Key protects your data off your devices. Your Secret Key is created locally on your device. It’s combined with your Account Password to authenticate you with 1Password’s server and encrypt your 1Password data.
  • Secure Remote Password protects your data in transit. Your 1Password account uses SRP to authenticate your credentials without sending them over the Internet. It also encrypts all traffic sent to 1Password’s server.

1Password Teams takes the 1Password experience to the next level for small businesses and teams. For a flat monthly price, 1Password Teams allows up to 10 employees to store, share, and collaborate on important information. It’s effortless and secure password management for your company.

WIth 1Password Teams, up to 10 employees get their own…

Source…

Aware teams with MFA provider to fight ransomware, makes $2.5M strategic investment

/in


Aware teams with MFA provider to fight ransomware, makes $2.5M strategic investment

Aware has formed a partnership with Miracl, which provides multi-factor authentication through a single step, and made a $2.5 million investment in its new partner’s parent company Omlis Limited, as it seeks to apply its biometrics to minimizing risk from data breaches and ransomware.

The partnership is expected to enable Aware to extend its cloud-based biometric authentication to customers in financial services and other industries to protect against data breaches and ransomware, through a mutual reseller agreement, according to the announcement. Miracle contributes risk management functionality to Aware’s solutions portfolio, and makes its “adaptive authentication” services more varied to fit specific customer needs.

“Data breaches and ransomware are continuing to wreak havoc on enterprises, and recent high-profile attacks like the Colonial Pipeline are reminders of the escalating threats we continue to face,” says Bob Eckel, chief executive officer and president of Aware. “In many cases, government agencies are calling on organizations to pursue multifactor authentication (MFA) to enhance their security. To date, many defenses against cybercrimes have relied on zero knowledge trust, which has several disadvantages; or traditional passwords, which are prone to login errors and irritating reset requirements. With MFA that incorporates biometrics, organizations can now have unprecedented protection and user privacy without the risks or frustrations of other approaches. This technology we now have available is an important and effective tool against these sorts of attacks.”

The partners can sell each other’s technologies and integrate them into their own product lines under the agreement, which will allow them to bring passwordless login products to market quickly.

Miracl gains access to Aware’s affordable, high-performance biometrics to provide a more extensive range of authentication capabilities along with its flagship authentication and transaction-signing solution, Miracl Trust.

“Ransomware attacks have increased more than 150 percent between the first six months of 2021 compared to the same period the previous year. MFA is…

Source…

Cybercriminals target Microsoft Teams users with malware

/in


After employees turned to remote working tools during the COVID-19 pandemic, cybercriminals looked for ways to exploit these apps.

Cybercriminals have targeted users of collaboration software Slack with phishing attacks, and mischief-makers have shown up uninvited to Zoom meetings. Now, attackers are targeting popular collaboration tool Microsoft Teams, according to cybersecurity firm Avanan.

Avanan researchers observed cybercriminals dropping malicious files into Teams conversations beginning in January, with “thousands” of attacks per month, the company said in a blog post.

The attackers hack into Teams by spoofing a user, compromising a partner organization, or gaining access to the targeted company through an email-based attack, Avanan said. The file they share in a Teams chat includes malicious software that can take over a victim’s computer.

“By attaching the file to a Teams attack, hackers have found a new way to easily target millions of users,” Avanan wrote. “Given that hackers are quite adept at compromising Microsoft 365 accounts using traditional email phishing methods, they’ve learned that the same credentials work for Teams.”

The Teams threat is a serious one and an attractive attack vector, given that cybercriminals can gain access to Microsoft credentials in email-based attacks, cybersecurity experts said.

These attacks are a “new spin on old vectors,” said Keatron Evans, a principal security researcher at the Infosec Institute, a cybersecurity training organization. “The problem is that Microsoft Teams and other meeting platforms have become so widely used due to COVID that it’s easier to slip something under the radar via a Teams chat session.”

Teams users should be wary of clicking on links in chats, and organizations should use updated endpoint detection tools, Evans recommended.

“If the victim does not have sufficient endpoint protection, it is a very easy attack to pull off,” he told the Washington Examiner. “Even with decent endpoint protection, most users would provide the needed interaction to cause the…

Source…

Week in review: Kali Linux 2022.1 released, attackers leveraging Microsoft Teams to spread malware

/in


Week in review

Here’s an overview of some of last week’s most interesting news, articles and interviews:

Kali Linux 2022.1 released: New tools, kali-linux-everything, visual changes
Offensive Security has released Kali Linux 2022.1, the latest version of its popular open source penetration testing platform.

DDoS attacks knock Ukrainian government, bank websites offline
Unknown attackers have mounted disruptive distributed denial-of-service (DDoS) attacks against several Ukrainian government organizations and state-owned banks.

Attackers use Microsoft Teams as launchpad for malware
Hackers are starting to realize that Microsoft Teams is a great means of spreading tentacles throughout an organization’s systems; since the start of the year, Avanan has been seeing hackers increasingly dropping malware in Teams conversation.

Open banking innovation: A race between developers and cybercriminals
In this interview with Help Net Security, Karl Mattson, CISO at Noname Security, explains the wide usage of open banking and how it can easily be exploited if adequate security measures are not implemented.

Online fraud skyrocketing: Gaming, streaming, social media, travel and ecommerce hit the most
An Arkose Labs report is warning UK commerce that it faces its most challenging year ever. Experts analyzed over 150 billion transaction requests across 254 countries and territories in 2021 over 12 months to discover that there has been an 85% increase in login attacks and fake consumer account creation at businesses.

Qualys Context XDR: Bringing context to an organization’s security efforts
In this interview with Help Net Security, Jim Wojno, Senior Director of XDR at Qualys, explains the advantages of using Qualys Context XDR and how it can provide clarity through context.

The importance of implementing security scanning in the software development lifecycle
Veracode published a research that finds most applications are now scanned around three times a week, compared to just two or three times a year a decade ago. This represents a 20x increase in average scan cadence between 2010 and 2021.

How QR code ease of use has broaden the attack surface
In this interview with Help Net Security, Neil Clauson,…

Source…