2월 3, 2023

NIST: Phishing Resistance – Protecting the keys to your kingdom

Phishing refers to a variety of attacks that are intended to convince you to forfeit sensitive data to an imposter. These attacks can take a number of different forms; from spear-phishing (which targets a specific individual within an organization), to whaling (which goes one step further and targets senior executives or leaders). Furthermore, phishing attacks take place over multiple channels or even across channels; from the more traditional email-based attacks to those using voice – vishing – to those coming via text message – smishing. Regardless of the type or channel, the intent of the attack is the same – to exploit human nature to gain control of sensitive information (citation 1). These attacks typically make use of several techniques including impersonated websites, attacker-in-the-middle, and relay or replay to achieve their desired outcome.

MORE FIDO in the News


GB News: If you’re using a password on this list, change it now – hackers could break into your account in seconds

The most common passwords of 2023, including “123456” and “admin,”...

12월 1, 2023

Biometric Update: Digital IDs mean manageable and critical change, FIDO tells US federal security leaders

FIDO Alliance webinar aimed at U.S. federal data-security officials to...


Inside Cybersecurity: FIDO Alliance emphasizes need for agency feedback on implementing authentication standard

FIDO Alliance seeks increased government involvement to develop comprehensive guidelines...


Security Insider: Consumers are demanding password alternatives

For the third time, the FIDO Alliance’s annual online authentication...

11월 13, 2023