On this World Password Day, we should all pause and think about how we can adopt passkeys. Passkeys represent a significant industry shift in identity security, moving away from traditional credentials of usernames and passwords to a more secure “no knowledge” approach to authentication that is a vastly better user experience. As a form of passwordless authentication, passkeys aim to eliminate the inherent risk factors of traditional credentials.   Why not go further than “thinking and reading about passkeys?” Try passkeys! Here are the steps to set up a passkey in the Google Chrome ..read more

It’s World Password Day 2024! What’s clear is that passwords and creating and maintaining good password hygiene is still one of the most effective ways to protect businesses. We’ve gathered some insights from cybersecurity experts who have had their say on passwords below, from whether they’re here to stay, more secure alternatives and everything in between. Thomas Richards, Principal Security Consultant at the Synopsys Software Integrity Group insisted passwords are here to stay, commenting: “Using passwords to authenticate users will continue to be the main way to authenticate for the forese ..read more

In today’s digital age, where technology is deeply ingrained in our daily lives, ensuring the cybersecurity of our educational institutions has become paramount. K-12 schools are increasingly becoming targets for cyberattacks, highlighting the urgent need for robust cybersecurity measures. With hackers constantly evolving their tactics, it is imperative for schools to deploy intelligence-powered cybersecurity solutions to protect against these threats. Over the past few years, there has been a significant increase in cyberattacks targeting K-12 schools. For example, in 2023 80% of K-12 schools ..read more

Synopsys has unveiled Polaris Assist, an innovative AI-powered application security assistant incorporated into the Synopsys Polaris Software Integrity Platform®. Leveraging advanced Large Language Model (LLM) technology alongside Synopsys’ deep knowledge in application security, including robust coding patterns, vulnerability detection rules, and insights from Black Duck’s expansive open-source database, Polaris Assist delivers straightforward summaries of identified vulnerabilities and AI-generated code fix recommendations. These capabilities empower security and development teams to constru ..read more

Today, Keeper Security joins Williams Racing as an Official Partner on the eve of the F1 Miami Grand Prix. Trusted by thousands of businesses and millions of individuals globally for its zero-trust and zero-knowledge cybersecurity software, Keeper’s branding will appear on driver overalls and the FW46 piloted by Alex Albon and Logan Sargeant in the current Formula 1 season and beyond. To mark the inauguration of the partnership, Keeper’s branding will be on the front wing for this weekend’s Miami GP. Race fans will also see the Keeper brand displayed across the Williams F1 car, garage, trucks ..read more

The UK has taken a pioneering step by introducing new laws aimed at safeguarding consumers against hacking and cyber-attacks while using internet-connected smart devices such as baby monitors, televisions, and speakers. Under these new laws, manufacturers are required to adhere to basic security standards, effectively prohibiting the use of weak, easily guessable default passwords such as ‘admin’ or ‘12345’. Additionally, in instances where a common password is employed, users will be prompted to change it upon startup. In many cases, when consumers purchase a smart home device or even somethi ..read more

APIContext has unveiled its 2024 Cloud Service Provider API Report, offering an in-depth examination of the performance of leading cloud service providers in the essential API domain. This annual global analysis scrutinised data stemming from 650 million API calls across over 10,000 distinct API endpoints. These interactions were sourced from a netwrok of over 100 geopraphically dispersed cloud data centers, encompassing major public cloud service providers such as AWS, Azure, Google, and IBM. The results show that, in 2023, globally only 7% of API Services achieved a 99.99% service availabili ..read more

Cato Networks, the SASE leader, today announced that Cato CTRL, the SASE leader’s cyber threat intelligence (CTI) research team, will demonstrate threat actors’ latest tactics designed to capitalise on organisations’ complex security architectures during presentations at the upcoming RSA Conference 2024. The talks headline Cato’s numerous media, customer, and partner activities at the conference. “Today’s security landscape is plagued by a patchwork of point solutions that often fail to challenge the threats posed by attackers while creating a chaos of complexity to manage,” said Etay Maor, Ch ..read more

Coalition, the world’s first Active Insurance provider designed to prevent digital risk before it strikes, today published its 2024 Cyber Claims Report, which details emerging cyber trends and their impact on Coalition policyholders throughout 2023. The report found that more than half (56%) of all 2023 claims were a result of funds transfer fraud (FTF) or business email compromise (BEC), highlighting the importance of email security as a critical aspect of cyber risk management. “Threat actors want to get paid, and the email inbox has proven to be an easy place for an attacker to uncover paym ..read more

Salt Security have announced the release of its new multi-layered OAuth protection package to detect attempts to exploit OAuth and proactively fix vulnerabilities. Salt is enhancing its API protection platform with a comprehensive suite of new OAuth threat detections and posture rules to address the growing challenge of OAuth exploitation. The company is the first API security vendor to launch deep OAuth threat detection capabilities, and these innovations will empower organisations to identify and mitigate malicious attempts to exploit OAuth flows, ultimately safeguarding sensitive data and u ..read more