security & compliance



Looking Back: Security and Compliance Milestones in 2016

The start of the year is always a time to reflect on the past 12 months and discuss trends for the future. 2016 was quite a year for cybersecurity. If it were a war, there would be many songs of battles lost and not many of battles won. But such is the nature of cybersecurity. In that spirit, OneLogin continued to invest in our security and privacy programs, rolling out several initiatives to strengthen our defenses for 2017 and beyond.

January 9th, 2017  /   Alvaro Hoyos   /  security & compliance


The Death Star: A Lesson in CyberSecurity

When you consider how powerful the Empire is compared to the relatively meager rebel forces, it’s uncanny how our heroes were able to infiltrate the Death Star, rescue Princess Leia, and completely obliterate the station. I think it’s safe to say that the imperials are not employing the best security practices. So what can we learn from their mistakes about security and compliance?

December 15th, 2016  /   Jack Shepherd   /  security and compliance, smarter identity


5 Strategies to Strengthen Your Cybersecurity Posture

There have been too many instances in 2016 of human error causing company data to be compromised, from the Snapchat breach, where an attacker posed as one of the company’s chief executives to trick an employee into releasing employee financial data, to the Seagate incident where a senior HR executive became the victim of a sophisticated phishing scheme, resulting in employee tax information being exposed.

October 31st, 2016  /   Alvaro Hoyos   /  security & compliance


Why We Need National Cyber Security Awareness Month

In a post-Snowden, post-Heartbleed era, it is easy to declare cybersecurity as one of the more important issues impacting most global citizens. Around the world, Internet access is fast becoming a monthly utility bill instead of a luxury item, and this means that a large portion of the world’s population is not only reaping the benefits, but also dealing with the risks of a highly interconnected environment.

October 11th, 2016  /   Alvaro Hoyos   /  security & compliance



Sedgwick LLP Trusts OneLogin with Sensitive App Data

All organizations today face the monumental challenge of securing corporate data in an increasingly connected world. But no matter how you slice it, the stakes simply are not the same for everyone when it comes to data security. Some companies - like those in the legal industry - cannot afford to compromise when it comes to keeping their information secure.

September 22nd, 2016  /   Jack Shepherd   /  security and compliance, smarter identity


Five Mr. Robot Hacks you can block with IDaaS

The TV show Mr. Robot was nominated for six Emmys, winning one. If you’re not familiar with the show, it’s a groundbreakingly realistic portrayal of computer security. As I watched Elliot hack various individuals, I couldn’t help but think that some of the exploits featured in the show could have actually been prevented if only the victims were using an IDaaS like OneLogin.

September 21st, 2016  /   Al Sargent   /  security & compliance


August 2016 Incident

We recently confirmed that an unauthorized user gained access to one of our standalone systems, which we use for log storage and analytics. Here is what we can share about the incident:

August 30th, 2016  /   Alvaro Hoyos   /  security & compliance