Authentication using visual codes: what can go wrong
Posted on 18 December 2013.
Several password replacement schemes have been suggested that use a visual code to log in. However the visual code can often be relayed, which opens up a major vulnerability. Can anything be done, and what compromises need to be made to protect users?
Learn more in this PasswordsCon Bergen 2013 presentation by Chris Warrington, Pico project, University of Cambridge.
Posted on 17 April 2014. | Instead of using a network of zombie computers, newer DDoS toolkits abuse Internet protocols that are available on open or vulnerable servers and devices. This approach can lead to the Internet becoming a ready-to-use botnet for malicious actors.
Posted on 17 April 2014. | More effective collaboration between government and the infosec industry is crucial to protecting organizations from cyber threats. More work needs to be done to strengthen government’s position as a source of information on potential threats.
Posted on 16 April 2014. | A new study exposes a severe gap in security visibility between C-level executives and IT security staff. 60% of IT security staff are informing executives of specific risks only when the risk is deemed serious, or not at all – and in more than half of the cases, actively omitting negative facts.
Posted on 14 April 2014. | Tom Quillin is the Director of Cyber Security Technology and Initiatives at Intel Corporation. In this interview he talks about security innovation, current and future threats.