Find out how Android received FIDO2 certification for ONE BILLION devices

Security Digest Information security news and advice from TechTarget's network| February 27, 2019 FEATURED STORY Android brings FIDO2 certification to 1 billion devices by Michael Heller, Senior Reporter The FIDO Alliance announced Android has received FIDO2 certification, which will bring the ability to sign into websites and apps with biometrics, rather than passwords. (SearchSecurity.com) Advertisement NEWS   Supply chain cybersecurity is a hot topic for RSAC 2019 Following years of AI climbing the hype wheel at RSA Conference, the topic is no longer one of the most prevalent as supply chain and infrastructure fears take focus at RSAC 2019. (SearchSecurity.com)   CrowdStrike report says breakout time for threat actors is increasing CrowdStrike's annual global threat report highlights why speed is critical for cybersecurity defenders. Experts sound off on key findings, including the rise of "big game hunting." (SearchSecurity.com)   ConnectWise plugin flaw exploited in ransomware attacks on MSPs GandCrab ransomware infected several managed service providers, thanks to an old a ConnectWise manage plugin vulnerability, but a new decryptor tool is offering relief to victims. (SearchSecurity.com)   Security automation on display in 2019 RSAC Innovation Sandbox Security automation will be a factor when most innovative startup is chosen at this year's RSAC Innovation Sandbox since almost all finalists use automation to improve security. (SearchSecurity.com)   Eclypsium: Bare-metal cloud servers vulnerable to firmware attacks Eclypsium found IBM SoftLayer cloud services are vulnerable to what it calls Cloudborne, which allows threat actors to make small, but potentially deadly firmware changes. (SearchSecurity.com)   WinRAR bug found and patched after 19 years A WinRAR bug that affects every version of the app over the past 19 years was discovered and patched. But it's unclear if the millions of the app's users will get the needed fix.  (SearchSecurity.com) EXPERT ADVICE   Microsegmentation security: Your key to zero trust Zero trust is the path forward to secure corporate IT assets. Learn how to put into place a zero-trust security model with a microsegmentation strategy. (SearchSecurity.com)   Weighing the cost of mitigating Spectre variant 2 Fixes for the Spectre variant 2 vulnerability affect system performance, so some in the tech sector wonder whether they're worth it. Expert Michael Cobb examines that question. (SearchSecurity.com)   Why is the N-gram content search key for threat detection? Detected malware can now efficiently be tracked due to VirusTotal's enterprise version of its software. Discover what N-gram is and how it can be used with Nick Lewis. (SearchSecurity.com)   Key steps to put your zero-trust security plan into action There are three key categories of vendor zero-trust products. Learn what they are, and how to evaluate and implement the one that's best for your company. (SearchSecurity.com)   What new technique does the Osiris banking Trojan use? A Kronos banking Trojan variant was found to use process impersonation to bypass defenses. Learn what this evasion technique is and the threat it poses with Nick Lewis. (SearchSecurity.com)   Is a Mirai botnet variant targeting unpatched enterprises? New variants of popular botnets were found targeting IoT devices by Palo Alto Networks' Unit 42. Discover how these variants differ from their sources and what new risks they pose. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2019 TechTarget. All rights reserved.