WebAuthn
Google Pushes ‘Passkeys’ Plan — but it’s Too Soon for Mass Rollout
FIDO FAIL: “Killing passwords” is a worthy goal—but is coercion the best way? ...
Gmail Adds Extra Checks, Thwarting Sneaky Hackers
Sensitive actions such as forwarding to be protected by extra 2FA step ...
Reddit Hacked — 2FA is no Phishing Phix
Reddit got hacked with a “sophisticated” spear phishing attack. The individual victim was an employee who clicked the wrong email link ...
0ktapus/‘Scatter Swine’ Hacking Gang Stole 10,000 Corp Logins via Twilio
More on the Twilio débâcle from earlier this month: Researchers reveal the hackers swiped at least 9,931 user credentials from more than 130 organizations ...
Bad Dog—Everyone HATES This FIDO Passwordless Idea
Behold! The next steps to passwordless nirvana. But will FIDO2-WebAuthn let “privacy invading megacorps” profit from your private data? ...
BSidesKC 2021 – Alex Lauerman’s ‘Passwords are dead? Long live WebAuthn!’
Our thanks to BSidesKC for publishing their outstanding BSidesKC 2021 videos on the Conferences’ YouTube channel. Permalink ...
TikTok Privacy Concerns, macOS Ransomware, Bad Passwords
In episode 128 for July 6th 2020: In episode 128 for July 6th 2020: New TikTok privacy concerns, the rise of macOS ransomware, and details on new research about bad password choices ...
The End of Passwords as We Know It
In episode 118 for April 27th 2020: A discussion about the end of passwords and what the future may hold with special guest Andrew Shikiar executive director of the FIDO Alliance. ** ...
WebAuthn + GitHub
via Lucas Garron, writing at GitHub's blog, of outstanding security news at the eponymous version control site: GitHub now fully supports WebAuthn (Web Authentication) for security keys. "The future of authentication: secure ...
Say goodbye to passwords: WebAuthn specification now an official standard
Weak or default passwords are behind 81% of data breaches, and most people employ such a password, despite knowing better. Worse still, Internet users recycle the same password across websites and services, ...