Blog
Stay up to date on company and partner news, product tips, and industry trends.
-
‘YubiKeys-as-a-Service’ delivered 203% ROI: new Forrester Consulting research and BeyondTrust case studyFor organizations around the world, cybersecurity often boils down to a few important areas: high reliability, ease-of-use and cost. Forrester Consulting, in a Yubico- commissioned Total Economic Impact™ (TEI) study, examined these areas regarding the adoption and use of YubiKeys, including the potential return on investment (ROI) enterprises may realize by deploying YubiKeys. One of […]
Read more -
Energy infrastructure security: Key takeaways from modern day cyberattacksEnergy grids have long been a target of cyber criminals looking to disrupt critical infrastructures and attacks across this sector have become commonplace across the globe. The 2021 cyberattack in the U.S. on the Colonial Pipeline showed that password compromises can impact both IT and OT systems and that disruptions to these systems have far […]
Read more -
Yubico Authenticator 6 is here!Earlier this year we announced the upcoming release of Yubico Authenticator 6, the next version of our YubiKey authentication and configuration app. We released a beta version, first for desktop, and then for Android, and we solicited your feedback. We got plenty of it, and have been busy incorporating a lot of it into the […]
Read more -
Certificate-based authentication with YubiKeys for Microsoft, 3rd party, and web applications now available on iOS and AndroidWith Microsoft’s announcement today of its support for Azure AD Certificate-based authentication (CBA) for both iOS and Android devices, Yubico is excited to share that the YubiKey is currently the only external device that supports CBA on Android and iOS. Plus, the YubiKey is the only FIPS certified phishing-resistant solution available for Azure AD on […]
Read more -
Retailers and hoteliers: pay attention to Requirement 12 of PCI DSS v4.0The PCI Security Standards Council (PCI SSC) published version 4.0 of the PCI Data Security Standard (DSS) at the end of March, kickstarting the transition from PCI DSS v3.2.1, which will be retired on March 31, 2024. Some new requirements may not take full effect until 2025, but that’s no reason to put them off. […]
Read more -
Phishing attacks are on the rise: are you prepared with phishing-resistant MFA?It doesn’t have to be Cybersecurity Awareness Month to read a flurry of news about human-based phishing attack stories – also called smishing if the “fishing line” is cast via SMS. These attacks boil down to the art of tricking people into revealing personal information and credentials – including usernames, passwords, authentication codes, and sensitive […]
Read more -
Phishing-resistant MFA available now with Azure AD and YubiKeysMicrosoft recently announced the release of three new solutions that enable organizations to deploy Azure Active Directory (Azure AD) to fight phishing attacks in Azure, Office 365, and remote desktop environments. These solutions will be essential to mitigate phishing attacks and will play a key role in supporting organizations looking to comply with the Executive […]
Read more -
Five ways Yubico can help you accelerate and scale phishing-resistant MFA in 2023Legacy multi-factor authentication (MFA) has not worked against modern cyber threats due to inability to stop phishing and other account takeovers. Modern MFA, such as YubiKeys, have been proven to stop phishing attacks and account takeovers in their tracks. Only solutions based on Smart card/PIV or FIDO protocols are truly phishing-resistant because they require each […]
Read more -
Why banks need to act now or risk non-compliance with new Consumer Financial Protection Bureau (CFPB) guidanceIf the gauntlet hadn’t been thrown before to protect financial and banking customers’ data, it’s definitely lying on the floor now. The recent circular bulletin from the CFPB makes it clear that financial institutions can’t slow-walk any security upgrades: “Inadequate security for the sensitive consumer information collected, processed, maintained, or stored by the company can […]
Read more -
Yubico Authenticator 6 for AndroidNote: This is a follow-up to our previous announcement of Yubico Authenticator 6 for Desktop. If you haven’t read it yet, we recommend you do so first. If you’re not yet familiar with the app you can read more about it, and about how to use Yubico Authenticator with the services you want to secure. […]
Read more