OneLogin Weekly News Round-up: August 30, 2019

August 30th, 2019   |     |  culture and news, security & compliance

Happy Friday! It’s August 30 and that means it’s Labor Day weekend. Like you, we’re excited to kick-off the long weekend! With September in our sights, we’re looking forward to seeing our customers at Connect 2019 in San Francisco this September 25.

This week, we announced the addition of a new customer in the education space, Broward College, who selected OneLogin to secure access for its nearly 800,000 users. OneLogin CEO and President Brad Brooks noted, “I have a particular passion about education and education customers. I truly believe helping in the education mission makes our society and country better. Every time we help another customer like Broward is a special win for me.”

Before you dive into a weekend of barbecues and relaxation, we’d like to share a couple stories we enjoyed reading this week. This edition of our round-up covers stories about multi-factor authentication (MFA), the Hostinger breach, common privileged access management mistakes, and more. We hope you’ll take advantage of the long weekend to rest, recharge, and enjoy time with family. Until next week!

MFA Blocks 99.9% of Account Hacks

We share a lot of stories about password attacks and data breaches. We’ve also noted that the only way to protect against account compromise is multi-factor authentication (MFA). This week, Microsoft’s Alex Weinert noted, “your account is more than 99.9% less likely to be compromised if you use MFA.” As MFA continues to evolve, users now have greater flexibility over the types of MFA they prefer to use, making it a virtual no-brainer. Read more on ZDNet

Up to 14 Million Users Affected by Hostinger Breach

Earlier this week, web hosting provider Hostinger reset customer passwords following a security breach on August 23, 2019. The company noted on its blog that a hacker gained access to an internal server and used an authorization token to make API calls against a database which housed customer personally identifiable information (PII) like usernames, IP addresses, phone numbers, emails, and home addresses. Hostinger’s investigation is ongoing and the total number of impacted customers is yet unknown. Read more on ZDNet

Secrets from a Startup CFO

OneLogin CFO Bernard Huger went from working with traditional Wall Street firms to serving as CFO of Silicon Valley startups. Bernard was instrumental in OneLogin’s growth, helping the company secure $100M in venture capital funding. He covers this and more in a recent interview. Read more on Forbes

What to Expect When Briefing Your Board on Cybersecurity

A couple weeks ago, we shared an article on the importance of including a cybersecurity expert on your company’s board. Now that you’ve identified and appointed a trusted cybersecurity expert, you’ll need to be ready to brief them. Gartner estimates that by 2020, large enterprises will need to report to their board on cybersecurity and technology risk at least once per year. These are the five security questions you can expect them to ask. Read more on Intelligent CISO

Don’t Overlook These Common Privileged Access Mistakes

The issue of abused or misused privileged access is on the rise. A Gartner study notes that 80% of security breaches involve privileged credentials. Your organization’s cybersecurity infrastructure could be vulnerable to previously overlooked privileged access management (PAM) errors. Solutions Review shares the five most common PAM mistakes and how you can resolve them. Read more on Solutions Review

Google Researchers Expose Security Flaw in Safari

Imagine you’re using Safari on your iPhone to browse the web, as one does. Now imagine a site you visited allowed a hacker to install a monitoring implant on your device. This week, researchers at Google announced they discovered a security flaw on malicious websites that would enable hackers to do just that. The exploit servers on hacked sites allow hackers to discreetly access a victim’s iPhone by exploiting previously undisclosed security flaws. Read more on TechCrunch

About the Author

Tony Smith is a Marketing Communications Manager at OneLogin. He is passionate about developing blog and social media content that helps customers identify and find solutions to their identity and access management challenges.

View all posts by Tony Smith

About the Author

Tony Smith is a Marketing Communications Manager at OneLogin. He is passionate about developing blog and social media content that helps customers identify and find solutions to their identity and access management challenges.

View all posts by Tony Smith

Secure all your apps, users, and devices