Slide background

The Entersekt blog.

Industry news, security threats, and technology advances in consumer authentication
Passwordless authentication: The future is here

Passwordless authentication: The future is here


Passwords suck! There, I said it. We've all heard it said many times before, but it’s worth repeating. The concept of gate-keeping access to digital services with a username and password may have been appropriate, and even good practice, in the early days of computing when a person might only have one or two logins to maintain. However, in today’s world where people have hundreds of accounts, they tend to re-use one password for multiple accounts or outsource the job to a password manager service. And even if you do manage to create a complex and unique password for each account, and remember it at the time of login, there is still the problem of data breaches, which are becoming all too common. 

Read More ...

Snippet: I received a phishing email last night. Since Entersekt is in the business of protecting banking customers from online fraud, I like to check out these phishing sites to see their latest tricks. This one was a good copy; it even had that standard “Secured by XYZ” logo included, indicating the certificate authority (CA) supposedly used to secure the site.

I received a phishing email last night. Since Entersekt is in the business of protecting banking customers from online fraud, I like to check out these phishing sites to see their latest tricks. This one was a good copy; it even had that standard “Secured by XYZ” logo included, indicating the certificate authority (CA) supposedly used to secure the site.

Snippet: While technology continues to evolve to help combat fraud, so do the strategies of savvy fraudsters. Protecting customer accounts, both consumer and business, has been a top priority for financial institutions everywhere for some time, but even more so now with the increased use of Internet and mobile banking channels.

While technology continues to evolve to help combat fraud, so do the strategies of savvy fraudsters. Protecting customer accounts, both consumer and business, has been a top priority for financial institutions everywhere for some time, but even more so now with the increased use of Internet and mobile banking channels.

Snippet: Whether they’re house burglars or cyber criminals, crooks tend to go for the easiest target, the proverbial lowest hanging fruit. With card-present fraud a greater challenge since the advent of EMV, fraudsters have retooled and set their sights on the tantalizingly low fruit of the digital world – card-not-present payments in particular.

Whether they’re house burglars or cyber criminals, crooks tend to go for the easiest target, the proverbial lowest hanging fruit. With card-present fraud a greater challenge since the advent of EMV, fraudsters have retooled and set their sights on the tantalizingly low fruit of the digital world – card-not-present payments in particular.

Snippet: Protecting customer accounts, both consumer and business, is a top priority for financial institutions everywhere, especially in light of the growing security risks with online and mobile banking.

Protecting customer accounts, both consumer and business, is a top priority for financial institutions everywhere, especially in light of the growing security risks with online and mobile banking.

Snippet: An SSL vulnerability! Again. Of all the things that can go wrong with secure communications on the Internet, a bug inside one of the most widespread SSL libraries, OpenSSL, is definitely one of the worst. Officially referenced as CVE-2014-0160, the bug is aptly nicknamed “Heartbleed,” since it was discovered inside an OpenSSL heartbeat feature.

An SSL vulnerability! Again. Of all the things that can go wrong with secure communications on the Internet, a bug inside one of the most widespread SSL libraries, OpenSSL, is definitely one of the worst. Officially referenced as CVE-2014-0160, the bug is aptly nicknamed “Heartbleed,” since it was discovered inside an OpenSSL heartbeat feature.

Snippet: The increasingly global nature of business means many of us work differently now. Corporate treasurers are no exception. They’re more mobile than ever before and, having taken on a more strategic function within organizations, they face pressure to make informed decisions and act on them fast, wherever they happen to be.

The increasingly global nature of business means many of us work differently now. Corporate treasurers are no exception. They’re more mobile than ever before and, having taken on a more strategic function within organizations, they face pressure to make informed decisions and act on them fast, wherever they happen to be.

Snippet: BankInfoSecurity reports that by 2017 there will be more than one billion mobile banking customers globally, proving yet again how transformative mobile technology continues to be in the lives of people everywhere. Of course, as the mobile banking channel takes off, so its attractiveness to cybercriminals will grow in direct proportion.

BankInfoSecurity reports that by 2017 there will be more than one billion mobile banking customers globally, proving yet again how transformative mobile technology continues to be in the lives of people everywhere. Of course, as the mobile banking channel takes off, so its attractiveness to cybercriminals will grow in direct proportion.

Snippet: In recent years, the banking industry has tracked the development of increasingly sophisticated fraud patterns, coordinated by groups across the Internet searching for bank systems with security weaknesses. Once a vulnerable institution is identified, the group typically plans a large-scale attack for when defenses are at their lowest.

In recent years, the banking industry has tracked the development of increasingly sophisticated fraud patterns, coordinated by groups across the Internet searching for bank systems with security weaknesses. Once a vulnerable institution is identified, the group typically plans a large-scale attack for when defenses are at their lowest.

Snippet: Cybersecurity is a large and complex problem. Companies have to protect the perimeter, authenticate legitimate users, respond to threats and probe the system for vulnerabilities. Most companies build a patchwork of systems that provide strong protections for each of these levels.

Cybersecurity is a large and complex problem. Companies have to protect the perimeter, authenticate legitimate users, respond to threats and probe the system for vulnerabilities. Most companies build a patchwork of systems that provide strong protections for each of these levels.

Snippet: The NSA and RSA relationship certainly overshadowed a lot of the conversations and sessions at the RSA Conference this year. But beyond that particular industry controversy, there were two recurring themes we saw running through many of our interactions at the event.

The NSA and RSA relationship certainly overshadowed a lot of the conversations and sessions at the RSA Conference this year. But beyond that particular industry controversy, there were two recurring themes we saw running through many of our interactions at the event.

Entersekt Logo

Entersekt is an innovator of customer-centric fintech solutions. Financial services providers and other enterprises rely on our patented mobile identity system to provide both security and the best in convenient new digital experiences to their customers, irrespective of the service channel. With us, they can concentrate on their innovation roadmap, while delivering intuitive, low-friction digital experiences to their customers.