Mobile Fraud Changes Outlook for Multifactor Authentication
9/27/2016SMS one-time passcodes just won't cut it anymore. We need new approaches that people will actually use.
Post a Comment
Author
Profile of Stephen Maloney
Executive VP, Business Development & Strategy, Acuant Member Since: 9/22/2016Author
News & Commentary Posts: 1
Comments: 0
Stephen Maloney joined Acuant from AssureTec where he was president and chief operating officer. He has more than 25 years of wide-ranging experience as a senior operating executive in technology. Prior to AssureTec, Mr. Maloney was cofounder, director and president of SolutionPoint International, a diversified security and risk management company. He was chairman of Design2Launch, a pioneer in digital workflow software that was sold to Eastman Kodak Company. He was executive vice president of MSA, a leader in explosive detection services that was one of the first companies to receive Safety Act certification by DHS. Earlier he cofounded and was CEO of i3 Mobile, a leader in wireless information. He led the company to a successful IPO. He graduated from Fordham, has an M.B.A., and holds or has held TS clearance.
Articles by Stephen Maloney
SMS one-time passcodes just won't cut it anymore. We need new approaches that people will actually use.
Post a Comment
White Papers
Video
0 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "This is our most effective security awareness training tool yet!"
Latest Comment: "This is our most effective security awareness training tool yet!"
Current Issue
Flash Poll
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security — even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-17538
PUBLISHED: 2018-09-26
PUBLISHED: 2018-09-25
PUBLISHED: 2018-09-25
PUBLISHED: 2018-09-25
PUBLISHED: 2018-09-25
From DHS/US-CERT's National Vulnerability Database CVE-2018-17538
PUBLISHED: 2018-09-26
Axon (formerly TASER International) Evidence Sync 3.15.89 is vulnerable to process injection.
CVE-2018-11763PUBLISHED: 2018-09-25
In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2 connections. A possible mitigation is to not enable the h2 protocol.
CVE-2018-14634PUBLISHED: 2018-09-25
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerabl...
CVE-2018-1664PUBLISHED: 2018-09-25
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 echoing of AMP management interface authorization headers exposes login credentials in browser cache. ...
CVE-2018-1669PUBLISHED: 2018-09-25
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 are vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote atta...
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This