Mozilla vulnerability goes BERserk

Security researchers have discovered critical forgery vulnerability in Mozilla’s Network Security Services (NSS) crypto library that could allow attackers to forge RSA certificates used to secure data transmissions. “Dubbed BERserk, this vulnerability allows

Published on: September 26th, 2014 Nestor E. Arellano

Flaw in Active Directory puts enterprises at risk, says vendor

A startup Israeli security vendor says it has found an encryption vulnerability in Microsoft's Active Directory it says could allow an attacker to change user passwords. "The potential for this particular vulnerability to cause

Published on: July 15th, 2014 Howard Solomon

RSA 2014 roundup: New products from Sophos, iBoss and viaForensics

The annual RSA Conference provides an opportunity for security vendors to steal some of the spotlight from the host and reveal new products or updates to existing ones. Among those who made announcements

Published on: February 28th, 2014 Howard Solomon

How simple changes can beef up passwords

Remember when the IT department used to remind users not to stick onto their computer screens post-it-notes with their passwords on it? Security threats have evolved since then but unfortunately our ability to

Published on: September 23rd, 2013 Nestor E. Arellano

Hackers claim they thwarted iPhone’s Touch ID

Fingerprint authentication, a biometric security feature highlighted in the recently released iPhone 5S smart phone, is not secure and should be avoided as a device access method, according to the Germany-based Chaos Computer

Published on: September 23rd, 2013 Nestor E. Arellano

Toronto’s SecureKey lands $15 million U.S. contract

Toronto-based authentication specialist SecureKey Inc. has won a $15 million contract to help the United States Postal Service (USPS) build a cloud-based authentication service that would allow people to use their existing online credentials to

Published on: August 22nd, 2013 nestor e. arellano

Beyond passwords: Attitudes toward authentication

We want it all-in one place Most consumers said they would use a multi-purpose identity credential to verify who they are before accessing data, systems and physical locations. Consumers in the U.K. and

Published on: August 14th, 2013 IT World Canada Staff

Tech industry watching anti-password petition

A petition calling for digital services to offer alternative authentication to passwords launched Wednesday, and technology industry types are watching with interest, though not lining up behind it just yet.RELATED CONTENTPrivacy czar pans

Published on: July 24th, 2013 IT World Canada Staff

Symantec upgrades Web security portfolio

Upgrades to Symantec’s Web site Security Solution portfolio provides enhanced protection for Internet-based shopping, advertising and online applications for business and consumers, according to the company.Symantec also said it is offering for the

Published on: February 13th, 2013