Identity and access management company Okta released a warning about social engineering attacks targeting IT service desk agents at U.S.-based customers in an attempt to trick them into resetting multi-factor authentication (MFA) for high-privileged users. To protect admin accounts from external actors, Okta recommends enforcing phishing-resistant authentication using Okta FastPass and FIDO2 WebAuthn.


More

PC Mag: Lose Your Device, Lose Your Accounts? Not If You Back Up Your Passkeys

Passkeys are more secure than passwords since they’re tied to a device, but what if…

Read More →

Wired: How Passkeys Work—and How to Use Them

Passkeys want to create a password-free future. Here’s what they are and how you can…

Read More →

Dark Reading: NIST Digital Identity Guidelines Evolve with Threat Landscape

In a bid to improve overall security of the identity ecosystem, the National Institute of…

Read More →


123287 Next