Category

Data security

Category

Ever wondered why organizations emphasize the importance of setting a complicated password as opposed to something convenient like ‘password123’? In today’s world, hackers are getting creative with their cybersecurity attacks. One type of attack that has gained a lot of traction in the past year is ‘password spraying’ – a type of brute force attack in the cybersecurity realm that goes beyond the traditional forms of hacking into an account. 

Picture this – in the past, hackers would attempt to gain unauthorized access to a single account by constantly guessing the password in a short period of time. But with organizations bringing measures such as locking an account when three or more attempts have been made, the user gets notified about any attempted security breach. 

The year 2019 has been a significant one in the technology world, with several high profile cases grabbing headlines. In fact, according to a recent article by DataQuest India, there were at least four areas of interest which were highlighted this year – Remote Desktop Protocol (RDP) threats, showstopper vulnerabilities like in the case of URGENT/11, speculative execution vulnerabilities such as Meltdown and Spectre, and finally the many ransomware attacks. 

As we move on to a whole new decade, it’s important to take stock of what the past decade has taught us and what the future has in store. In the cybersecurity world, experts bear past experiences in mind and routinely predict a number of innovative techniques that could be used to infiltrate security systems. Each year, different methods and new approaches are introduced or discussed, touching upon all those concerns about data protection and the challenges ahead. 

Approximately two billion records were stolen between July and October 2019. That’s just in one quarter of a year! This is several times more than what was stolen last year – half a billion records. Even as organizations continue to invent new technology and pump in more and more funds (an estimated $124 billion in 2019) to secure data, the number of breaches also continues to rise – at an alarming rate!

It’s becoming evident that cybersecurity software solutions alone are not enough anymore. There is an urgent need to train employees and bring in experts who can close the loopholes left by software solutions. Therein arises the concept of offensive security.

Just last year, the popular Q&A site Quora suffered a data breach, as reported by Techworld in their article on UK’s most infamous data breaches. This just goes to show that even the best of businesses are finding it a challenge to secure their data and vital business information in this age of digital advancements.

IT security is, no doubt, an overwhelming, daunting, and expensive task. With cybercriminals getting more advanced and sophisticated, organizations are struggling to find security solutions that will effectively counter them.

What is WebAuthn?

WebAuthn (Web Authentication API) is a global standard specification for secure authentication on the Web, formulated in 2018 by the World Wide Web Consortium (W3C).

This browser-based API allows user authentication on web applications through the creation of strong “credentials” and user-agent-mediated access to authenticators. This could be either in the form of hardware tokens (like U2F security keys) or in-built modules (biometric readers like Google Hello, Apple Touch ID) in the platform. Web Authn has garnered the support of all leading browsers like Chrome, Firefox, and Edge, and is compatible with all leading platforms.

As organizations increasingly place their data and applications across multiple locations on the cloud, zero trust security is rapidly gaining ground as the network security model of choice among enterprises.

Zero Trust Security is a security model in which a user, irrespective of whether he/she is within or outside the network perimeter, requires an additional verification to get access into a network. There is no particular technology or software product associated with this security model. It simply requires an additional security layer to verify users. This could be anything from biometric verification like thumb-print scanning, or a digital signature verification. Of the two, biometric verification is preferable as it can neither be recreated nor hacked.