Password reset

Hacking Kia: Shocking Web Portal Vulnerability Discovered! Plus, NIST Password Updates!

Kia Security Flaw Exposed, NIST’s New Password Guidelines

| | Authentication, biometrics, cars, Connected Cars, Cyber Security, cyber threat, Cybersecurity, Data Privacy, Digital Privacy, Episodes, Hacking, Information Security, Infosec, Kia, MFA, Multi-Factor Authentication, NIST, Password, password complexity, Password Guidelines, Password Policy, Password reset, Password Resets, passwords, Podcast, Podcasts, Privacy, security, technology, web application, web application vulnerability, Weekly Edition
In this episode, the hosts discuss a significant vulnerability found in Kia’s web portal that allows remote control of various car features via their app, potentially enabling unauthorized unlocking and tracking. The ...
Shared Security Podcast
Extreme closeup of “TEN” on US$10 note

GitLab ‘Perfect 10’ Bug Gets a CISA Warning: PATCH NOW

| | cisa, CISA Advisories, CISA Advisory, CISA Alert, CISA KEV, cisa known exploited vulnerabilities, cisa known exploited vulnerabilities catalog, CISA Threat Update, CISA warning, CISA.gov, CVE-2023-7028, CVSS10, Cybersecurity Infrastructure Security Administration, GitLab, GitLab Community Edition, GitLab CVE-2023-7028 CVE-2023-5356, GitLab Enterprise Edition, GitLab Patches, GitLab Security, GitLab Vulnerability, NSA/CISA, Password reset, Password reset protection, SB Blogwatch, software supply chain, software supply chain attack, software supply chain attacks, software supply chain risk, Software Supply Chain risks, Supply-Chain Insecurity
Password reset FAILURE: The U.S. Cybersecurity and Infrastructure Security Agency warns GitLab users of a 100-day-old, maximum severity vulnerability ...
Security Boulevard

How Enzoic is helping West-Mark comply with NIST

| | Active Directory, Active Directory passwords, all posts, azure, Cybersecurity, Enzoic News, NIST 800-63, NIST 800-63b, Password reset, Password Security, Regulation and Compliance
West-Mark is an ISO 9001 certified manufacturer of trucks and trailers based in the western United States. Their high-quality manufacturing process helped them become an essential supplier for the US Department of ...
Enzoic

Addressing Authentication Issues Within IoT

| | all posts, credential screening, cyber hygiene, iot, Password Policy, Password reset, Password Security
Staying Safe, While Staying Connected As more organizations enter the digital landscape of the Internet of Things (IoT), there are parallel increases in the number and frequencies of cyberattacks. IoT has a ...
Enzoic
Grindr

Troy Hunt Flags Up ‘Sensational’ Sextortion Bug in Grindr

| | Dating Apps, Grindr, Password reset, SB Blogwatch, sextortion, Troy Hunt
Grindr, the popular dating app, had a ridiculous bug in its password-recovery flow. To make matters worse, Grindr ignored the bug for a week ...
Security Boulevard

Eliminating the Burden of Periodic Password Reset

| | Active Directory, Mandatory Password Changing, NIST 800-63b, Password Expiration Policy, Password Renewal Requests, Password reset, passwords, Periodic Password Resets
The NIST 800-63b password guidelines include password policy changes that can improve everyone’s experience with passwords, including eliminating the forced periodic password reset. The most publicized recommendation is throwing away password complexity ...
Enzoic