authentication

Microsoft announced today that it has bought PhoneFactor, a provider of multi-factor authentication.

PhoneFactor offers organizations different ways for their employees to access key software and services without relying just on passwords or security tokens. The company's specialty is phone authentication, but it also provides authentication through text messages.

Timothy Sutton, PhoneFactor CEO, described the concept in a blog, saying that "when we initially launched PhoneFactor, we had a vision to deliver strong authentication as a seamless part of almost every process where an individual needs to access confidential or proprietary data." He added that "phones … Read more

A researcher showed today that Oracle's databases could be hacked with brute-force attacks using only the database's name and a username, according to Kaspersky Lab Security News.

Esteban Martinez Fayo, who works for AppSec Inc., was demonstrating his discovery at a security conference in Argentina and said that within just five hours on a regular PC using a special tool he could hack through easy passwords and access users' data.

"It's pretty simple," Martinez Fayo told the security blog Dark Reading. "The attacker just needs to know a valid username in the database, and … Read more

Fourandsix Technologies, a startup founded by a former Photoshop bigwig and a image-analysis guru, has released its first product, the FourMatch software to detect changes to an image.

The most obvious use for the $890 Photoshop plug-in: ensuring that digital photos used as legal evidence are authentic.

The company lists other possibilities, too, though, such as checking that nobody's fiddled with digital images of insurance claims or contest entries, or ensuring the legitimacy of photos that might be published as the truth.

Company executives have good street cred in the area: the software came from Chief Technology Officer Hany … Read more

Back in July, Dropbox usernames and passwords were compromised via third-party Web sites. As a result, Dropbox said it would work on adding more security features to help keep accounts safe. Almost a month later, the company's delivered an extra feature that you'll need to enable on your own: two-step verification.

For each new device you use to access the Dropbox Web site or service, you'll need to enter your current password and a security code using this new method. This code can be sent to you via SMS or be generated by a mobile authenticator app. … Read more

Did you read Mat Honan's tale of woe last week? The one where his Amazon, Apple, Gmail, and Twitter accounts were hacked and his digital life was eradicated?

If not, I strongly encourage you to read his story. In a nutshell, hackers strung together pieces of information to gain access to several important online accounts. The results were personally devastating for him. But his story is a good lesson for all of us. After learning the details of the attack -- from one of the hackers himself, no less -- Honan says he regrets three things most of all.… Read more

Remembering a clunky password could become a thing of the past, according to researchers at Iowa State University.

Morris Chang, an associate professor of engineering, and his team are working on keystroke authentication -- a way of identifying you by the way you type and how long you pause between keystrokes. Ultimately, such a technique could block unauthorized users based on their typing patterns from gaining access to an account.

Using biometrics to identify and authenticate users isn't new -- think fingerprint recognition or iris scans. But those are one-time verifications. What makes keystroke authentication more secure is the … Read more

WinRAR is a lightweight, flexible, and easy-to-use archiving utility that can unpack most archive formats, as well as compress to both RAR and ZIP. Free to try for 40 days ($29 for single license), WinRAR is a top dog in the compression category.

WinRAR's interface is about as simple as it gets. Start creating (or add to) an archive by dragging and dropping your files into the interface or by browsing through the Folder Tree side panel (when enabled). From there, the most common functions are laid out in the form of colorful, mostly intuitive icons along the top, … Read more

WinRAR is a lightweight, flexible, and easy-to-use archiving utility that can unpack most archive formats, as well as compress to both RAR and ZIP. Free to try for 40 days ($29 for single license), WinRAR is a top dog in the compression category.

WinRAR's interface is about as simple as it gets. Start creating (or add to) an archive by dragging and dropping your files into the interface or by browsing through the Folder Tree side panel (when enabled). From there, the most common functions are laid out in the form of colorful, mostly intuitive icons along the top, … Read more

It's looking like the jig may be up for Hulu as we know it. Rumor has it that the TV and video streaming service might be planning to switch from its free model to a plan that requires viewers to prove they pay for cable or satellite TV, according to the New York Post.

The purported new model is called "authentication" and would work by making users log into Hulu with cable or satellite TV account numbers in order to watch any show on the service -- essentially putting up a de facto pay wall around its … Read more