Blog

Stay up to date on company and partner news, product tips, and industry trends.

Home » Blog
Who we areWho we are What we doWhat we do Media assetsMedia assets Get in touchGet in touch BlogBlog Press ReleasesPress Releases
  • Survey results are in: 59% of employees still rely on username and password as primary method to authenticate their accountsOur inaugural State of Global Enterprise Authentication Survey – which we exclusively previewed in September during YubiSummit – captures a snapshot of how companies around the world are tackling authentication.  We received over 16,000 responses from entry-level employees up to business owners at organizations ranging in size from one to 2,000+ employees, in eight countries: […]Read moreenterprise authenticationenterprise securityphishing-resistant MFAsurvey
  • The Key to election security: Q&A with Michael Kaiser, president and CEO of Defending Digital CampaignsThe election ecosystem is a prime target for cybersecurity threats and the 2022 United States Midterm election cycle has been no different. Though many security improvements have been made in recent years, bad actors continue to become more sophisticated in gaining access to private information – often driven by phishing attacks. Officials in charge of […]Read moreelection securityelections and political campaignsgovernmentQ&A
  • ‘YubiKeys-as-a-Service’ delivered 203% ROI: new Forrester Consulting research and BeyondTrust case studyFor organizations around the world, cybersecurity often boils down to a few important areas: high reliability, ease-of-use and cost. Forrester Consulting, in a Yubico- commissioned Total Economic Impact™ (TEI) study, examined these areas regarding the adoption and use of YubiKeys, including the potential return on investment (ROI) enterprises may realize by deploying YubiKeys. One of […]Read moreBeyondTrustForrester TEIsubscriptionYubiEnterpriseYubiKey
  • Takeaways from modern day cyberattacks in energy sector – YubicoEnergy grids have long been a target of cyber criminals looking to disrupt critical infrastructures and attacks across this sector have become commonplace across the globe.  The 2021 cyberattack in the U.S. on the Colonial Pipeline showed that password compromises can impact both IT and OT systems and that disruptions to these systems have far […]Read morecyberattackenergy and natural resourcesenergy infrastructuresupply chain
  • Yubico Authenticator 6 is here!Earlier this year we announced the upcoming release of Yubico Authenticator 6, the next version of our YubiKey authentication and configuration app. We released a beta version, first for desktop, and then for Android, and we solicited your feedback. We got plenty of it, and have been busy incorporating a lot of it into the […]Read moreOTPSDKYubico AuthenticatorYubiKey
  • Certificate-based authentication with YubiKeys on iOS and Android  With Microsoft’s announcement today of its support for Azure AD Certificate-based authentication (CBA) for both iOS and Android devices, Yubico is excited to share that the YubiKey is currently the only external device that supports CBA on Android and iOS. Plus, the YubiKey is the only FIPS certified phishing-resistant solution available for Azure AD on […]Read moreAzure ADCBAMicrosoftphishing-resistant MFAYubiKey
  • Retailers and hoteliers: pay attention to Requirement 12 of PCI DSS v4.0The PCI Security Standards Council (PCI SSC) published version 4.0 of the PCI Data Security Standard (DSS) at the end of March, kickstarting the transition from PCI DSS v3.2.1, which will be retired on March 31, 2024. Some new requirements may not take full effect until 2025, but that’s no reason to put them off. […]Read morePCI DSSPCI SSCphishing-resistant MFAretail and hospitality
  • Phishing attacks are on the rise: are you prepared with phishing-resistant MFA?It doesn’t have to be Cybersecurity Awareness Month to read a flurry of news about human-based phishing attack stories – also called smishing if the “fishing line” is cast via SMS. These attacks boil down to the art of tricking people into revealing personal information and credentials – including usernames, passwords, authentication codes, and sensitive […]Read moreFIDOphishingphishing-resistant MFAsmishingYubiKey
  • Phishing-resistant MFA available now with Azure AD and YubiKeysMicrosoft recently announced the release of three new solutions that enable organizations to deploy Azure Active Directory (Azure AD) to fight phishing attacks in Azure, Office 365, and remote desktop environments. These solutions will be essential to mitigate phishing attacks and will play a key role in supporting organizations looking to comply with the Executive […]Read moreAzure ADFIDOMicrosoftphishing-resistant MFAzero trust
  • Five Strategies to Scale Phishing-Resistant MFA in 2023 – YubicoLegacy multi-factor authentication (MFA) has not worked against modern cyber threats due to inability to stop phishing and other account takeovers. Modern MFA, such as YubiKeys, have been proven to stop phishing attacks and account takeovers in their tracks.  Only solutions based on Smart card/PIV or FIDO protocols are truly phishing-resistant according to the National […]Read moreFIDOOTPphishing-resistant MFAsmart cardYubiKey