Ration card e-KYC explained: Who must update, how to do it and what happens if you don’t

This rule applies to millions of ration card holders across the country and is aimed at ensuring that food subsidies reach ...
SecurityWeek

From Open Source to OpenAI: The Evolution of Third-Party Risk

Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how visibility and shift-left security reduce exposure.
TechCrunch

Better Auth, an authentication tool by a self-taught Ethiopian dev, raises $5M from Peak XV, YC

It’s rare to see a solo founder building a widely adopted developer infrastructure tool. Even more so if the founder happens to be from Africa. Bereket Engida, a self-taught programmer from Ethiopia, ...
EdTech

Hard Tokens vs. Soft Tokens for K–12 Multifactor Authentication

Joel Snyder, Ph.D., is a senior IT consultant with 30 years of practice. An internationally recognized expert in the areas of security, messaging and networks, Dr. Snyder is a popular speaker and ...
Bleeping Computer

Hackers exploit Four-Faith router flaw to open reverse shells

Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. The malicious ...
Forbes

Gmail 2FA Cyber Attacks—Open Another Account Before It’s Too Late

Update, Nov. 05, 2024: This story, originally published Nov. 04, now includes step-by-step details regarding the use of Google’s Advanced Protection Program, as well as a Google security checkup tool ...
SiliconIndia

Tenable Research discovers SMB Force-Authentication Vulnerability in Open-Source Software

Tenable, the exposure management company, has disclosed that its Tenable Cloud Security Research team has discovered a medium-severity Server Message Block (SMB) force-authentication vulnerability ...
PC World

6 ways hackers sidestep your two-factor authentication

Protecting an account with just a username and password is not very smart. Both can be stolen, guessed, or cracked too easily. This is why two-factor authentication (2FA) is recommended for all ...
Dataquest

Beyond passwords: Biometric authentication in financial services

Continuous advancement in digital technology is causing a whirlwind of changes in the Indian financial services industry. Smartphone-enabled mobile wallets and quick loan approvals are just two ...
CSOonline

Salt Security adds defense against OAuth attacks

Salt Security has added a new OAuth security offering to its API protection platform to help organizations detect attempts to exploit OAuth and fix vulnerabilities associated with the protocol. OAuth ...
ITWire

Bendigo Bank changing authentication method from token to mobile app

Bendigo Bank is changing the way it offers online authentication to its customers, switching from a code generated on a physical security device to a mobile app. A bank spokesperson told iTWire, in ...
CSOonline

Highly exploited Chromium bug traced to a Google OAuth endpoint

An undocumented Google OAuth endpoint has been identified to be the root of the notorious info stealing exploit that is being widely implemented by various threat actors in their codes since it ...