Bash Bug Laughs in the Face of Traditional Password Protection
(PRWEB UK) 17 October 2014 -- The ease with which hackers can steal sensitive login details from companies was recently highlighted by the Bash Bug vulnerability, which is also known as Shellshock. Companies that rely only on passwords to protect login procedures risk allowing malware to enter their networks. SecurEnvoy, the inventor of tokenless two-factor authentication, protects against such malware by using additional login security. The flexibility and cost effectiveness of the method will be demonstrated by the company, together with the Dutch distributor TechAccess, from 29 to 30 October at the Infosecurity.nl IT fair in Utrecht (stand A132).
Spam, Phishing, Hackers: These will be key topics at the Dutch Infosecurity.nl trade fair. International security experts will gather there to discuss, for example, IT threats such as Bash Bug, Heartbleed, etc. while also showcasing new security solutions designed to eliminate potential sources of risk. One such potential source is the traditional use of simply a password to protect network access - a godsend for hackers. To counter this risk, many companies have now turned to two-factor authentication using dedicated physical tokens such as smart cards. These provide users with further protection as a supplement to their username and password.
Using smartphones as malware destroyers
However, this method can be very inflexible for businesses in the long run, as staff must always carry these devices with them and they are also easily lost. SecurEnvoy wanted to minimise such overheads and therefore developed an authentication method that does not require costly dedicated tokens. The passcode used for network authentication is provided to users directly on their private smartphones, tablets or other mobile devices via SMS, e-mail, voice call or soft token app.
A new option that has recently been introduced by SecurEnvoy is the offline One Swipe function. This technology combines the PIN/password with a one-time QR code. No mobile phone reception or Internet connection is required when logging into a network using One Swipe. The user first enters his/her PIN into the soft token user interface. The smartphone or tablet then generates a one-time QR code. If this code is then scanned using a webcam on a computer or mobile device, One Swipe provides all the information required to authenticate the user: the authentication method is just as simple as it is secure.
Visitors to Infosecurity.nl. can discuss issues with SecurEnvoy and its distributor TechAccess, and see One Swipe in action, at stand A132. In addition, posts by the security expert SecurEnvoy about current IT vulnerabilities, such as Bash Bug and Heartbleed, are regularly added to its blog.
About SecurEnvoy plc:
SecurEnvoy is the creator of patented tokenless solutions for two-factor authentication. Millions of global users already benefit from the fastest mobile authentication process available that doesn’t require a token. The process uses commonly available devices like mobile phones, smartphones, tablets and laptops to provide the passcode required for authentication. Even without mobile phone reception or an internet connection, the user can obtain the code via a voice call or enable identification using one-swipe technology, which is based on a QR code scan. The product range of the company based in London (UK), Frankfurt (D), New York and San Diego (USA) includes the SecurAccess solution. The administration tools can easily be integrated into existing IT infrastructures and allow administrators to add up to 100,000 users per hour. SC Magazine awarded the solution ‘Best Buy’ and the company has been classed as a leading visionary in Gartner’s Magic Quadrant. SecurEnvoy has a customer base in all vertical segments, including banking, finance, insurance, government, manufacturing, marketing, retail, telecoms, charity, law and construction. The authentication expert collaborates with partners such as AEP, Astaro, Cisco, Checkpoint, Citrix, Juniper, F5, Palo Alto, Sophos, etc. See http://www.SecurEnvoy.com for further information.
Further information:
SecurEnvoy Ltd.
Steve Watts
Sales Director
E-mail: swatts(at)securenvoy(dot)com
Internet: http://www.securenvoy.com
Global HQ:
SecurEnvoy Global HQ
Merlin House
Brunel Road
Theale
Reading
RG7 4AB
USA branch I:
SecurEnvoy
373 Park Ave South
New York,
NY 10016
USA branch II:
SecurEnvoy
Mission Valley Business Center
8880 Rio San Diego Drive
8th Floor San Diego CA 92108
PR agency:
Sprengel & Partner GmbH
Nisterstrasse 3
56472 Nisterau, Germany
Germany
Contact partners:
Olaf Heckmann
Marius Schenkelberg
Tel.: +49 (0)26 61-91 26 0-0
Fax: +49 (0)26 61-91 26 0-29
E-mail: [email protected]
ms(at)sprengel-pr(dot)com
http://www.sprengel-pr.com
Steve Watts, SecurEnvoy Ltd., http://www.securenvoy.com, +44 2035 101 777, [email protected]
Share this article