It’s no secret the cybersecurity landscape is constantly evolving. Even as organizations modernize their security posture, bad actors adapt and employ more sophisticated tactics. In 2019, data breaches have consumed industry headlines and appear to be the new normal. This week alone, industry headlines were filled with stories about data breaches at Capital One, State Farm, StockX, and Earnin. And the list goes on. So, how do you keep up with the latest happenings in cybersecurity?
At OneLogin, “Security First” is our company’s primary value. It defines the work we do and the technology we provide our customers. So, while you were fine-tuning your organization’s security posture, we kept our ear to the ground so you don’t have to.
Each week we’ll bring you a collection of industry news and stories that matter. And no, we promise it’s not all gloom and doom! Think of OneLogin’s Weekly News Round-up as your pulse on the cybersecurity and Identity and Access Management (IAM) space. We hope to share content that informs and supports your efforts to bolster your organization’s security practices. So, without further ado, here’s this week’s round-up.
What’s the Ultimate Password?
Hint: It’s not passwords. Today, we might use text, facial recognition, or fingerprints to authenticate into our devices. Biometric authentication is gaining popularity within the cybersecurity space and Gartner notes that by 2020, voice biometrics may account for 50% of all authentication queries. In “My Voice is My Best Password,” Infosecurity Magazine explores why more businesses are focusing on voice biometrics and speech technologies. Read more in InfoSecurity Magazine.
How to Secure Your Modern, Remote Workforce
While comfortable for employees, working from home poses significant security risks for businesses. The United Kingdom’s Office of National Statistics projects that by 2020, 50% of the UK workforce will work remotely. So, how can CISO’s ensure their ever-expanding remote workforce has secure access to corporate data? According to our own Stuart Sharp, passwordless authentication is the desired objective, but it’s not yet accessible by companies without modern cloud-based identity solutions. In the meantime, secondary forms of authentication like Single Sign-on (SSO) and Multi-Factor Authentication (MFA) can help companies protect their remote employees from cyber attacks. Read more in Intelligent CISO.
Warshipping: A New Reason to Monitor Packages Delivered to Your Office
While it sounds like a term reserved for the Department of Defense, ‘Warshipping’ might become a viable future attack vector. As demonstrated by IBM this week at Black Hat, the tactic involves concealing tiny home-brew devices in parcels with the intent of “sniffing” a company’s network for access points. Our own Stuart Sharp noted, “these attacks are certainly viable as they require low powered devices that can be activated remotely, meaning they can withstand transit for many days without losing power. Organisations should be extra vigilant when accepting packages and refrain from leaving empty boxes within the confines of the business.” Read more on IT Pro.
Protecting Your Organization Starts on the Inside
As we mentioned before, the cybersecurity landscape is constantly evolving. While malicious actors remain a persistent threat, the greatest risk to your business is your employee base. How do you secure your organization from the inside out? By ensuring your employees are aware of the latest cybersecurity threats. My Tech Decision shares five of the most important cybersecurity training tips for your employees. Find them here.
Want more cybersecurity news, tips, and tricks? Don’t just follow us online! OneLogin customers can meet with us in-person at our annual user conference, OneLogin Connect 2019. Register today!