Ciptor Security Insights

Our partner HYPR, a true leading passwordless multi-factor authentication (MFA) provider, has joined the Microsoft Intelligent Security Association (MISA), a consortium of experts from across the cybersecurity industry with the shared goal of improving customer security and confidence with digital services.

As a member, HYPR will have the opportunity to use Microsoft's security products and expanded network, while Microsoft customers will benefit from HYPR's True Passwordless MFA™ technology. HYPR's interoperability with Microsoft Azure Active Directory enables true cross-cloud, cross-platform passwordless login, including single sign-on (SSO), desktop multi-factor authentication, and mobile-to-web authentication for apps including Microsoft 365. This integration provides full protection against man-in-the-middle (MITM), credential stuffing, phishing, and mobile PUSH fatigue attacks. This joint solution raises the bar on protecting workforce identities by requiring the attacker to target each individual device, to cause widespread impact and damage.

"HYPR has long had the belief that passwords are archaic, costly, plagued with risk and undoubtedly the weakest link in many corporate security protocols and strategies. Joining MISA only solidifies our vision to eliminate the password, accelerate the cloud journey of our customers, while protecting their organization against vulnerabilities," said George Muldoon, Vice President of Strategic Alliances, HYPR. "We are excited to join MISA and benefit from the knowledge and resources shared by the other members of the association."

"Microsoft has been on a mission to eliminate passwords and help people protect their corporate identities," said Alex Simons, Corporate Vice President of Program Management, Microsoft Identity Division. "We are pleased to see companies like HYPR support that goal by integrating their solutions through the Microsoft Intelligent Security Association."

What is HYPR

HYPR is a leader in Passwordless Multi-factor Authentication (MFA). 

With HYPR installed you will be able to protect workforce and customer identities with the highest level of assurance while enhancing the end users' experience. The HYPR approach shifts the economics of attack and risk in the enterprises' favor by replacing password-based MFA with Passwordless MFA.

With HYPR, customers can finally enable cross-platform desktop MFA, stop phishing, and reduce fraud associated with weak or stolen passwords.

Welcome to The Passwordless Future. It's time to reimagine identity security.

Bank of America announced last month that starting June 23rd, 2021, it will support FIDO2 certified USB security keys, including FEITIAN Security Keys, to increase the security of its users and help protect customers against fraud and identity theft.

Bank of America will support registering your USB security key to your account, online banking authentication and an extra layer of security for adding transfer recipients to your account and completing money transfers.

The support for FEITIAN FIDO2 certified security keys for sign-in authentication and completing money transfers is a major security milestone for financial institutions. Read more.

Benefits of using a security key for online banking

  1. Extra layer of security for account sign-in and online banking
  2. Using a security key Increase limits for certain transfer types
  3. Extra security for higher value money transfers
  4. Use Secured Transfer internationally if you don’t have a U.S. based mobile number. USB security keys are an optional alternative to SMS-based one-time security codes if you do not have access to a U.S. mobile phone number or can’t receive texts to your phone.
  5. USB security keys are a more secure alternative to SMS-based one-time security codes. If you don’t have a domestic mobile phone number or can’t receive security codes via text, you can use FEITIAN USB security keys that plugs into your computer. 


Security Key FAQS

What is a USB security key?

A USB security key plugs into your computer’s USB port and functions as an extra layer of security that’s used in Online Banking to increase limits for certain transfer types.

Why do I need a USB security key?

USB security keys are an optional alternative to SMS-based one-time security codes if you do not have access to a U.S. mobile phone number or can’t receive texts to your phone.

Where can I get a USB security key?

USB security keys can be purchased from our online store: www.it-safe.shop

How do I register my USB security key?

You will be able to register your USB security key beginning June 21.

How do I use my USB security key when making a transfer?

When prompted for your USB security key, all you need to do is tap the button on the key already inserted into your USB port, allow the browser to read your device and continue with your transfer.

Source: https://www.bankofamerica.com/security-center/faq/additional-security-features/

 

Each employee password reset costs an average of $70. How many times have you reset your password this year? The number of passwords we're managing continues to grow as our digital identities become more complex, so how do we keep our credentials secure?

This podcast are talking about the pathway to the future - Passwordless Authentication.

Sam Tang, EY's Cyber Chief Identity Architect, Rob Foster, EY Cybersecurity Senior Manager and George Muldoon, HYPR Global Alliance Leader and subject matter resource in passwordless authentication in their discussion on common obstacles and cutting-edge solutions when using passwords.

Listen to the podcast on the following link: Podcast Passwordless Authentication

Ciptor & IT-SAFE Expands to Canada, PEng, PMP Mukul Hossain named CEO.

Ciptor & IT-SAFE a True Passwordless Authentication Company announced it is expanding to Canada. We are joining the ranks of countless major tech companies that are expanding its footprint into Canada. The company named Mukul Hossain, an executive with experience in both traditional Authentication as well as Passwordless Authentication, as CEO. 

Team Canada consist of Mukul Hossain, Mike Allen, Bikash Mandal, Robert Bachynsky, Farid Mahid, Rifayet Alam and Mohammad Sharif, Esrat Zaman, Tord Fransson, Leslie Gurtner and Shamrat Asfaq. Based on several years of strong growth, we decided the time was right to invest in a formal, and actual presence says Tobias Gurtner President of Research & Insight and Mikael Zaman Rodin President of Sales & Marketing. Mukul is well-respected and toghether with the team we are here to serve and help Canadian organisations to become Passwordless.

As a global True Passwordless Authentication company, Ciptor & ITSAFE has thousands of clients across the world, including government, banks, insurance, education, logistics, retail, law-enforcement. Mukul and Team Canada is now tasked and dedicated to expanding the client base with Passwordless Authentication and to provide fast and reliable customer support, provide IT teams with powerful capabilities to manage the delivery of hardware SecurityKeys to users in Canada and accelerates the adoption of strong authentication via Passwordless Authentication.

For more information on Ciptor & IT-SAFE Passwordless Authenticaton solutions, visit ciptor.com and IT-SAFE

 

Some 500 Coop supermarket stores in Sweden have been forced to close due to an ongoing "colossal" cyber-attack affecting organisations around the world. Coop Sweden says it closed more than half of its 800 stores on Friday after point-of-sale tills and self-service checkouts stopped working.

The hackers who are believed to be behind the massive cyber attack that has affected hundreds of companies globally are demanding 70 million dollars.

- I'm not a bit surprised, says Minister of Defense Peter Hultqvist

The food chain expects a large loss. In order to be able to open its almost 800 stores as soon as possible, Coop has put all its resources into the work. In addition, hundreds of IT technicians have been sent to stores around the country to get their payment systems in order.

Exact figures on how the attack will affect the company financially are still unknown According to IT expert's calculations, it is likely that the food chain will lose more than 12 million dollars every day.

How can you secure your business from a Coop-scenario?

Prevent poor cryptographic key handling by preventing accidental copying and distribution of cryptographic keys. NetHSM offering significant advantages: It is easy to use, easy to customize, and provides superior security. Furthermore its implementation can be audited to ensure it is free of backdoors. The NetHSM device meets high performance requirements and is available at an unbeatably low price from Germany. With the NetHSM you will defend your business against remote attacks and eliminate remote extraction of private keys by storing cryptographic keys securely on hardware

Store your cryptographic keys for web servers TLS, DNSSEC, PKI, and CA securely in the network-connected NetHSM hardware. Your private keys are kept secure inside the NetHSM hardware in case of server hacks and the physical compromise of your data center. NetHSM therefore allows the user to easily fulfill security compliance requirements.

For common usage of the NetHSM, please visit the NetHSM product information

 

This site uses cookies, by continuing you agree to the use of cookies