Blog
Stay up to date on company and partner news, product tips, and industry trends.
Nov 15, 2022
Yubico Authenticator 6 is here!
Earlier this year we announced the upcoming release of Yubico Authenticator 6, the next version of our YubiKey authentication and configuration app. We released a beta version, first for desktop, and then for Android, and we solicited your feedback. We got plenty of it, and have been busy incorporating a lot of it into the …
Nov 2, 2022
Certificate-based authentication with YubiKeys for Microsoft, 3rd party, and web applications now available on iOS and Android
With Microsoft’s announcement today of its support for Azure AD Certificate-based authentication (CBA) for both iOS and Android devices, Yubico is excited to share that the YubiKey is currently the only external device that supports CBA on Android and iOS. Plus, the YubiKey is the only FIPS certified phishing-resistant solution available for Azure AD on …
Oct 27, 2022
Retailers and hoteliers: pay attention to Requirement 12 of PCI DSS v4.0
The PCI Security Standards Council (PCI SSC) published version 4.0 of the PCI Data Security Standard (DSS) at the end of March, kickstarting the transition from PCI DSS v3.2.1, which will be retired on March 31, 2024. Some new requirements may not take full effect until 2025, but that’s no reason to put them off. …
Oct 25, 2022
Phishing attacks are on the rise: are you prepared?
It doesn’t have to be Cybersecurity Awareness Month to read a flurry of news about human-based phishing attack stories – also called smishing if the “fishing line” is cast via SMS. These attacks boil down to the art of tricking people into revealing personal information and credentials – including usernames, passwords, authentication codes, and sensitive …
Oct 19, 2022
New phishing-resistant solutions available now with Azure AD and YubiKeys
Microsoft recently announced the release of three new solutions that enable organizations to deploy Azure Active Directory (Azure AD) to fight phishing attacks in Azure, Office 365, and remote desktop environments. These solutions will be essential to mitigate phishing attacks and will play a key role in supporting organizations looking to comply with the Executive …
Oct 18, 2022
Five ways Yubico can help you accelerate and scale phishing-resistant MFA in 2023
Legacy multi-factor authentication (MFA) has not worked against modern cyber threats due to inability to stop phishing and other account takeovers. Modern MFA, such as YubiKeys, have been proven to stop phishing attacks and account takeovers in their tracks. Only solutions based on Smart card/PIV or FIDO protocols are truly phishing-resistant because they require each …
Oct 13, 2022
Why banks need to act now or risk non-compliance with new Consumer Financial Protection Bureau (CFPB) guidance
If the gauntlet hadn’t been thrown before to protect financial and banking customers’ data, it’s definitely lying on the floor now. The recent circular bulletin from the CFPB makes it clear that financial institutions can’t slow-walk any security upgrades: “Inadequate security for the sensitive consumer information collected, processed, maintained, or stored by the company can …