It’s Friday, October 11, 2019 and we’re just a few days away from Connect19 London. That’s right! If you missed us in San Francisco, there’s still time to connect together, this time in the UK. If you fancy a day of thought leadership, best practices, and 1:1 training with OneLogin staff, join us October 15 at the ME London.
This week, we continued a trend from Connect19 San Francisco, focusing on the future of work. We recently interviewed one hundred CIO’s worldwide about the future of business and shared their findings in a newly-released video series. You can find the first installment on our Twitter channel. As workplaces become more complex, so do app deployments and configurations. Our recently announced enterprise sandbox helps administrators design, build, and test in secure environments before promoting changes to production.
We hope you’ve enjoyed a great week and have a relaxing weekend in store. But, before you start the weekend, take a moment to check out this week’s cybersecurity news!
What Hackers Don’t Know Won’t Hurt Them
We’d never ask you to lie, but—when it comes to security questions—maybe you should. We all know that security questions are inherently vulnerable. If you’ve forgotten your login credentials, do you really want the only thing standing between your account and a hacker to be answers that are easily discoverable with a Google search? Just think about it.. Read more on Mashable
Twitter’s Admission May Harm Security
Twitter acknowledged using personal contact details in its Tailored Audiences and Partner Audiences advertising system. The news could have an impact on the way users authenticate. OneLogin’s Stuart Sharp noted, “This type of activity will likely result in users removing their phone numbers from the site, which will ultimately affect the number of people using additional factors for authentication such as text verification, which is a massive step backwards for all those working hard to push MFA as a method of increasing security online.” Read more on InfoSecurity
SIM-Swapping Is a Whole Thing
The FBI issued a warning this week about attacks that can bypass multi-factor authentication (MFA). Citing attacks like SIM-swapping and proxies like Muraen and NecroBrowser, the bureau noted that users should use this warning as a word of precaution and reemphasized that MFA remains an effective security measure. MFA still blocks 99.9% of password attacks. We just have to be mindful of the .01%. Read more on ZDNet
What’s Up With Cybersecurity Strategy?
Forbes takes an emphatic stance on what most have already said: the standard cybersecurity model is fundamentally broken. The concept of keeping people outside the corporate network is outdated and in need of a refresh. Today, cybersecurity has to begin with untrusting the corporate network and reinforcing security with solutions like MFA and adaptive authentication to assess risk and verify devices before granting access to corporate data. Read more on Forbes