| MFA

Yes, Google’s Security Key Is Hackable

Jul 25, 2018 5:00:00 PM

Here is an article by Roger Grimes, Data-Driven Defense Evangelist at KnowBe4

Ever since Google told the world that none of its 85,000 employees had been successfully hacked (https://krebsonsecurity.com/2018/07/google-security-keys-neutralized-employee-phishing/) since they started implementing Security Keys, like Yubico’s YubiKey (https://www.yubico.com/products/yubikey-hardware/), I’ve been contacted by friends and the media about my thoughts.

4 scams that illustrate the one-way authentication problem

Jun 25, 2018 5:00:00 PM

These scams rely on tricking consumers into believing they are interacting with a trusted vendor. Here’s how vendors can prevent the scams.

My 11 ways to hack 2FA column a few weeks ago continues to be a popular discussion topic with readers. Most people are shocked about how easy it is to hack around two-factor (2FA) and multi-factor authentication (MFA). It isn’t hard. Sometimes it’s as easy as a regular phishing email.

Penetration Testing

Incident Response

Computer Forensics

Expert Witness Services

Security Awareness Training

Vulnerability Assessment

Product Claims Testing

Red Team Operations

Social Engineering Testing

Books from Kevin Mitnick

Ghost in the Wires

The Art of Invisibility

The Art of Intrusion

The Art of Deception

In The News: More from Kevin Mitnick

Advice from Kevin Mitnick Featured in the Wall Street Journal Op-Ed

12 Ways to Defeat Two-Factor Authentication

We Need to Talk About NIST’s Dropped Password Management Recommendations

KnowBe4 Positioned as Leader in the Gartner Magic Quadrant for Second Consecutive Year

About Our Team

About Kevin

Global Ghost Team

In The News

Our Work

Our Clients

Testimonials & Reviews

Media Kit

Raising Your Security Posture with The Global Ghost Team

Resources

FAQs

Blog

Lockpick Business Card

Virtual Events & Webinars

Recent Articles