Learn more about next-gen passwordless authentication and the evolving IAM space

A Man-in-the-Middle (MitM) attack — also known as an on-path attack — occurs when an attacker inserts themselves between two communicating parties. The attacker then intercepts the messages flowing between...

Websites use the concept of sessions to track a user’s identity as they browse through the site. Without sessions, a user would have to authenticate to each page of a restricted site, which would negatively impact the user experience...

Wireless networks provide a convenient way to access the Internet. Instead of plugging a computer or phone into a physical network, it’s possible to enter a network’s SSID and (optional) password and connect via WiFi...

In recent years, the Internet has increasingly been moving to use encrypted HTTPS for web browsing. In fact, over 90% of web browsing uses HTTPS instead of insecure HTTP. The reason for this trend is that...

In today’s digital world, the passwords and codes people use to access accounts and apps are vulnerable in many ways; one of those ways is shoulder surfing in which malicious individuals observe sensitive...

The Domain Name System (DNS) is a critical part of the Internet’s infrastructure. It is responsible for converting domain names (like kzero.com) into IP addresses...

Single Sign-On (SSO) authentication is a technology that enables a user to authenticate just once and then allows that user access to multiple applications and/or services. While this function seems to indicate that SSO is built...

A computer has a few different addresses associated with it. A computer will have IP addresses associated with the network(s) that it is connected to. It also has a hardware or MAC address assigned to each...

While many online services have upped their game in terms of requiring users to create strong passwords, threat actors frequently hack into accounts using password-based attacks...

Single factor authentication (SFA) is any kind of authentication that only uses one authentication factor. That factor may be something you know, something you have, or something you are. In the early days of...

Keylogging is a form of surveillance and data theft. It's designed to 1) spy on users when they enter login credentials and 2) steal those credentials. Once the credentials have been obtained, the...

Multi-Factor authentication (MFA) is any kind of authentication method that uses two or more authentication factors. Authentication factors may include something you know, something you have,

A Distributed Denial of Service (DDoS) attack is performed by a botnet and tries to take down a target system. Several computers will bombard the victim with large volumes of spam traffic with the goal...

Malware is a portmanteau of malicious software. Malware can be designed to achieve various purposes, such as stealing data, sabotaging operations, or providing unauthorized access to computer systems...

Biometric authentication has fast become one of the most commonly used and accepted methods of authentication. It uses specific characteristics of a person, such as facial features, voice, and fingerprints, to validate one’s identit...

A dictionary attack is a method used by hackers to breach user accounts by systematically entering each word from a compiled list of common words and popular combinations that people often...

The hyperconnected modern society sparked by social media platforms comes with arguably as many downsides as upsides. One of these drawbacks relates to cybercrime and how threat actors increasingly exploit trust...

Most people are well aware of the classic phishing scams by now: the Nigerian prince, the lottery they never entered, the estranged relative leaving behind a fortune. Clone phishing, though, is a different beast...

Adware, or advertising-supported software, is software designed to deliver ads to users. While these ads can be designed to generate revenue for a developer, the term is frequently used to describe a type of malware that profits an attacker or installs...

Botnets are responsible for many large-scale cyber attacks. That includes Distributed Denial of Service (DDoS) attacks and spam/phishing campaigns. They're also behind credential-stuffing...

A watering hole attack is a cunning type of cyber intrusion that involves compromising trusted websites to deliver malicious payloads to its visitors. This attack draws inspiration from watering holes in the natural world...

At their core, all social engineering tactics exploit psychological principles to manipulate individuals into taking certain actions or divulging confidential information. Vishing, or voice-based phishing, leverages the trust that people tend...

SMS phishing or smishing is a social engineering attack that uses SMS to send phishing messages to a user. Often, these messages are designed to induce a user to click on a link that takes them to a phishing site...

A joint law enforcement sting coordinated by Interpol brought down the notorious phishing-as-a-service platform ‘16shop’ in August 2023. Exemplifying the extent of the threat posed by phishing attacks...

Blockchain technology - and more generally distributed ledger technology - has rapidly gained adoption and investment in recent years. Blockchain-based solutions such as Decentralized Finance (DeFi) have reached...

The word spyware is a portmanteau of spying and malware. In essence, spyware is a malicious program designed to collect various sensitive information from a user’s device. This data may be login credentials, personal...

Whaling attacks take phishing techniques and target the “big fish” in the organization (hence the name). These attacks use deception, manipulation, and similar techniques to trick high-level executives into doing something that...

Business Email Compromise (BEC) is a sophisticated social engineering attack in which cybercriminals impersonate executives, employees, or business partners by using, compromising, or spoofing their...

API authentication is the process of verifying the identities of users, individual devices, or platforms seeking access to APIs (Application Programming Interface). It acts as a digital guardian, protecting the...

Most of the time, when browsing the web, we’re not communicating with one website and its services at a time but with several. Often, this happens behind the scenes to make life easier for users and for the many companies that provide services to them...

In today’s digital landscape, the need for strong authentication mechanisms is a critical component of sound organizational cybersecurity. Think of it as the first line of defense in safeguarding the invaluable resource of sensitive data...

Passwordless-based authentication has a lot of advantages and is the underpinning of any robust cybersecurity program. While it's far more secure than using passwords to access important information, it can be burdensome for employees to learn a new...

Password-based authentication protocols are established series of steps and processes that use passwords to verify the identity of someone accessing a service or resource...

Biometrics is an increasingly popular form of biometric authentication. Instead of using something that a user knows or has to identify them, biometrics uses something unique to them as a person. Many forms of biometric authentication...

We’ve all seen the headlines in the past couple of years. Large companies get hacked, data breaches occur daily, and users run the risk of having their data exposed—often having to face financial consequences for the lack of security...

Fingerprint biometrics verify user identities when logging into a system by using the unique patterns of whirls and loops that distinguish a person's fingerprints. As a biometric authentication method,...

Most of you reading this article will have already stumbled upon CAPTCHA, just think back on that bus or stop sign you had to identify to prove that you are a human. But what’s behind this digital test and how...

Everyone has a different voice. Each person’s voice includes a unique set of pitches, tones, frequencies, and other attributes. This is what makes it possible to recognize the voice of someone that you know...

Out-of-band authentication (OOBA) requires signals from two different communication channels. For example, imagine that an employee in the finance department receives an email claiming to be from the CEO that instructs them to...