two-factor authentication

(get it in RSS or Atom)

Apple, please provide better protection for iCloud - Secure our Selfies!

iCloud

In the wake of exposed candid celebrity photos Apple recommends using two-step verification. Would this have made a difference? Should Apple strengthen its authentication options?

Apple admits flaw in email attachment encryption on iPhones and iPads

Apple admits iOS 7 encryption flaw

Apple is under pressure once again to patch a security flaw in iOS 7, after a researcher published his discovery that email attachments are unencrypted on iPhones and iPads.

"Heartbleed" - would 2FA have helped?

2fa-250

Because of the global password reset pandemic caused by Heartbleed, lots of Naked Security readers have asked, "Wouldn't 2FA have helped?"

Paul Ducklin takes a look...

SSCC 133 - Prize unicorns, Android malware, 2FA, Attack reports and Vote For Us! [PODCAST]

sscc-133-thumb-250

Chet and Duck review the week's news in their informed and entertainingly serious style, discussing the prizes on offer at this year's PWN2OWN competition, talking about a new twist in Android malware, and reviewing the latest attack reports from Yahoo and Target...

Yahoo prompts password reset after mass attack on email service

Yahoo

Yahoo has revealed that it's resetting passwords for a number of its email users after discovering a coordinated effort to gain access to accounts. We explain how Yahoo Mail users can better protect their accounts immediately.

Skype's Twitter account compromised by Syrian Electronic Army

Microsoft's reading Skype messages

Microsoft's Skype brand had its Twitter, Facebook and WordPress accounts hacked by a someone claiming to be the Syrian Electronic Army. The real question is, where was the two-factor?

SSCC 126 - Zero-day, Bitcoins, passwords and randomness [PODCAST]

Turn bad news into good with "what you can do better" advice from Chet and Duck.

Learn from: an XP zero-day, a spate of Bitcoin "bank robberies," the outcome of a European user security survey, and yet another cryptographic blunder, this time from Drupal.

Apple's iCloud iConundrum - does convenience mean insecurity?

shutterstock_AppleArrow250

Researcher Vladimir Katalov explained how documents and backups stored in Apple's iCloud can be accessed bypassing Apple's two-factor authentication, even when enabled, last week at the Hack in the Box conference in Malaysia.

Security essentials: What is two-factor authentication?

Security essentials: What is two-factor authentication?

It's National Cyber Security Awareness Month so we're going back to basics and looking at two-factor authentication.

8 tips for safer online banking

8 tips for safer online banking

Most of us use online banking. But are you making sure you're doing it as safely as possible? Check to make sure you're doing all of these 8 things!

Monday review - the hot 21 stories of the week

Monday review

Catch up with everything we've written in the last seven days - it's weekly roundup time.

Monday review - the hot 21 stories of the week

Monday review

In case you missed anything, here's everything we wrote in the past seven days.

Monday review - the hot 22 stories of the week

dow-250

In case you missed anything, here's everything we wrote in the past seven days.

Google patches bug that allows attackers to slip past two-factor authentication

google-2-step_thumb

Attackers could - until Google issued a fix last Thursday, that is - bypass Google accounts' two-step login verification, reset a user's master password, and gain full profile control, just by capturing a user's application-specific password.

Twitter looking to hire two-factor authentication brains

twitter-two_thumb

Just a few days after Twitter reset passwords and revoked session tokens for 250,000 possibly hacked user accounts, the king of social media succinctness has apparently taken its first step toward two-factor authentication.

Dropbox two-factor authentication available to early adopters

Dropbox two-factor authentication available to early adopters

A few weeks ago, Dropbox reported a data breach and promised two-factor authentication as part of its security response.

The good news is that the company is already starting to deliver on that promise...

How long would it take to crack your password?

safe-cracked-thumb

Password policies are the enemy of security, the developer of a password analyzing tool concludes, while a vendor pushes it further to decree that password security is, basically, toast.

Facebook announces new security features - but do they go far enough?

Facebook announces new security features - but do they go far enough?

Facebook has just published an article entitled Keeping You Safe from Scams and Spam. It's all about improving security on its network.

Paul Ducklin reports on the good, the bad and the missing.