2FA

(get it in RSS or Atom)

IRS estimate of stolen tax records balloons to over 300,000

Piles of files. Image courtesy of Shutterstock.

A wider analysis shows that attackers used the IRS's Get Transcript app - now gone, and good riddance! - to roll around in far more records than first thought.

Cracked Uber accounts tumble to 40 cents on the dark web

Uber. Image courtesy of Evan Lorne/Shutterstock.

Dark web listings say they won't refund/replace if Uber asks for verification: a sign that Uber's experiments with strong verification requirements are paying off.

Apple ditches Recovery Key in new 2FA process for El Capitan and iOS 9

Apple ditches Recovery Key in new 2FA process for El Capitan, iOS 9

Apple is beta testing 2FA that cuts out Recovery Key. Good riddance!

Authentication is all around us! 60 Sec Security [VIDEO]

Here's our latest "60 Second Security" video - catch the week's security news in just 1 minute.

SSCC 202 - They hacked the US Army? Are you SURE? [PODCAST]

Join Sophos security experts Chester Wisniewski and Paul Ducklin for this week's security podcast.

Apple, Microsoft, patching, hacking the army (sort of), and 49 arrests in a Europol action against bank fraudsters!

IRS announces 2016 anti-fraud arrangements - but do they go far enough? [POLL]

As a result of the IRS breach announced in May 2015, changes are afoot in how US tax returns will be authenticated in 2016.

Are they enough? Have your say in our poll...

iOS 9 enhances two factor authentication, introduces 6-digit passcodes

Apple. Image courtesy of Lester Balajadia/Shutterstock

Apple announced on Monday that iOS 9 will have native two-factor authentication as well as (slightly) more secure passcodes.

5 online privacy and security tips for travelers

Going on holiday or traveling for business any time soon?

Here are 5 online privacy and security tips for when you're on the road.

Monday review - the hot 22 stories of the week

Here are last week's stories in one convenient place so you can catch up on what you missed!

Slack gets hacked - rolls out two-factor authentication after user database breach

Slack is the latest start-up to make a big media splash in one of the worst possible ways - by acknowledging a data breach that exposed its users to malicious hackers.

Hackers force closure of Canadian Bitcoin exchange Cavirtex

Broken Bitcoin. Image courtesy of Shutterstock.

Canada's largest Bitcoin exchange - Cavirtex - has announced its closure, saying the latest in a string of hacking attacks may have left hashed passwords and 2FA "secrets" compromised.

Twitter's new tool should stop password sharing and help fend off hijackings

Twitter. Image courtesy of Shutterstock / Twin Design.

The new tool, TweetDeck Teams, lets users share Twitter accounts without having to share passwords.

What do you mean, "Facebook is now text only"? - 60 Sec Security [VIDEO]

Here's the latest episode of our weekly one-minute security video.

Fun, fast...and educational.

Apple's "two-step" security now protects iMessage and FaceTime, too

imsg-250

Apple has quietly extended its two-step verification feature to more of its ecosystem.

If you have the "Apple two-step" turned on, then the iMessage and FaceTime services are now protected by it.