The Daily of the University of Washington

UW to introduce new Duo login process March 3 due to security concerns

In addition to changes to Duo’s user interface, the update will add a three-digit code step to Duo push approvals, UW’s ...
Techlicious

How to Use a Hardware Security Key to Protect Your Accounts

Security keys are the most secure way to stop SIM swaps and phishing attacks. Step-by-step instructions for Google, Apple, ...
GEEKSPIN on MSN

Police warn of Amazon QR code scam that drains bank accounts

Ever wondered why seemingly harmless Amazon packages are suddenly landing on your doorstep with no sender name, no return ...
Bleeping Computer

Mandiant details how ShinyHunters abuse SSO to steal cloud data

Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...
Des Moines Register

VIETTEL AND SHUSH INC. ENTER PROOF OF CONCEPT TO POWER NETWORK AUTHENTICATION USING SHERLOCK PLATFORM

Viettel plans to commercialize network authentication across financial services, e-government, fintech, and mobile application security. This marks a major step toward a global identity layer rooted ...
Bleeping Computer

Credential-stealing Chrome extensions target enterprise HR platforms

By setting authentication cookies via the C2, the researchers say that the attackers could take over authenticated sessions without entering usernames, passwords, or multi-factor authentication codes.