all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Risky Biz Soap Box: Preventing MFA reset attacks

Add to bookmarks
Oct. 12, 2023, 1 p.m. |

Risky Business risky.biz

Patrick Gray speaks to Yubico’s Jerrod Chong about how organisations can better verify the identities of users when performing MFA resets. In other words, how to not get MGM’d.

He also talks about the chain-of-trust issues inherent to synchronisable passkey implementations.

attacks box can identities mfa mgm passkey patrick gray performing reset risky-business soap talks trust trust issues verify yubico

Visit resource

More from risky.biz / Risky Business

Risky Business #746 – Microsoft takes your security seriously* 22 hours ago | risky.biz
adam asa business change +14
Snake Oilers: Push Security, Knoc Knoc and iVerify 2 days, 20 hours ago | risky.biz
access applications attacks browser +17
Special Edition: Chris Krebs, Alex Stamos and Patrick Gray 1 week, 1 day ago | risky.biz
alex alex stamos american business +25
Risky Business #745 – Tales from the PANageddon 2 weeks ago | risky.biz
adam alto apple bad +18
Risky Business #744 -- Ransomware upstarts jostle in Lockbit's absence 3 weeks ago | risky.biz
adam bad business chief +17
Snake Oilers: Kodex, ClearVector and Censys 3 weeks, 6 days ago | risky.biz
assets can censys cloud +19
Risky Business #743 -- A chat about the xz backdoor with the guy who found … 4 weeks ago | risky.biz
adam backdoor bug business +20
Risky Business #742 -- China bans AMD and Intel, pivots to Linux on the desktop 1 month ago | risky.biz
adam amd apple bans +22
Risky Biz Soap Box: Why Azure vulns should get CVEs 1 month, 1 week ago | risky.biz
azure box cloud cloud service +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Security Engineer II- Full stack Java with React

@ JPMorgan Chase & Co. | Hyderabad, Telangana, India
View on infosec-jobs.com

Cybersecurity SecOps

@ GFT Technologies | Mexico City, MX, 11850
View on infosec-jobs.com

Senior Information Security Advisor

@ Sun Life | Sun Life Toronto One York
View on infosec-jobs.com

Contract Special Security Officer (CSSO) - Top Secret Clearance

@ SpaceX | Hawthorne, CA
View on infosec-jobs.com

Early Career Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com
View more jobs