Microsoft Authenticator App Gets a UI Update and GDPR Compliance

Microsoft Authenticator for Android

The 2-factor authentication app from Microsoft, Microsoft Authenticator, has a new update rolling out that brings a slightly refreshed look to the app as well as compliance with the new General Data Protection Regulation (GDPR) directive in the European Union.  The new update is version 6.2.26 for those keeping score at home and it has been released to the Play Store.

As for the new look, it is a slight one compared to the older version of the app.  Now an account is shaded grey if it isn’t setup for identify verification and is only used to access organizational resources.

Continue reading “Microsoft Authenticator App Gets a UI Update and GDPR Compliance”

G Suite Adds Security Key Support for All Customers

Google G Suite

Google has announced that physical USB security key support is coming to all version of G Suite over the next few weeks.  Support of security keys, to this point, has been limited to Enterprise level customers.  That is changing as all variants of the service will be gaining support.

Security Keys are a physical USB key that you plug into a device that gives you access to it.  It is perhaps the ultimate in 2-Factor authentication.  Yubico is perhaps the most well known of these types of keys and they are readily available at low cost.

Continue reading “G Suite Adds Security Key Support for All Customers”

Twitter Now Supporting Third Party Two Factor Authentication Apps

Twitter for Android

Twitter has finally begun allowing users to use 3rd party two factor authentication apps to verify their identity.  The new feature is rolling out to users accounts online and you can now select the default SMS authentication or a 3rd party authentication tool.

In April, the social micro blogging site rolled out SMS authentication that allowed users to have an authentication code texted to them when they were logging into their account.  That is still enabled by default but you now have the option to use a 3rd party app like Google Authenticator to verify your identity.   The feature requires that you log into your Twitter account online, then go to Settings & Privacy in your account settings.  There you can setup an authentication app.

Continue reading “Twitter Now Supporting Third Party Two Factor Authentication Apps”

Microsoft Authenticator Adds Fingerprint Support

Microsoft Authenticator for Android

Microsoft Authenticator, the 2-factor verification app from the Redmond company, has a nice update rolling out to it for users.  The new build, version 6.1.7 for those keeping score at home, brings fingerprint authentication to the app.  What this will allow you to do is approve a login request by tapping the fingerprint scanner on your phone and not require you to enter the six digit code to approve it.  It is all aimed at keeping things easier but also secure.

If you haven’t tried Microsoft Authenticator, it works how you would expect a 2-factor app to work but it does so with a bit more flare by having avatars for your accounts.  For example, you have the Facebook logo for your Facebook account, or the Google “G” with your Google account.  It also has a nice, 30 second countdown clock next to each code so you know when it is about to expire.

Continue reading “Microsoft Authenticator Adds Fingerprint Support”

LastPass Now Free Across Unlimited Devices

One of the best password management apps out there, LastPass, has given everyone a reason to be happy:  They have lowered their price to… free!  The even better news, they haven’t stripped the app down to the barebones either.  The free app now gives you the ability to sync your password and other secure content to your phone, PC, Chrome extension and tablet.  To this point, that sync feature was part of the premium package for the app (which was a quite affordable $1/month).

From the company’s blog

I’m thrilled to announce that, starting today, you can use LastPass on any device, anywhere, for free. No matter where you need your passwords – on your desktop, laptop, tablet, or phone – you can rely on LastPass to sync them for you, for free. Anything you save to LastPass on one device is instantly available to you on any other device you use.

If you have been looking for a password management app, you need to seriously consider LastPass as an option.

Continue reading “LastPass Now Free Across Unlimited Devices”

Microsoft Edge More Secure Than Google Chrome According to NSS

In a report from NSS Labs, the research company found that Microsoft Edge, the latest browser from the Redmond company, is more secure against phishing and malware than both Google Chrome and Mozilla’s Firefox.  The set of reports, which can be downloaded here, tested three current versions of each browser over the months of September and October to get the results which will likely come as a surprise to some.  The versions tested for the reports were:

  • Google Chrome 53.0.2785
  • Mozilla Firefox 48.0.2
  • Microsoft Edge 38.14393.0.0

The first report focused on phishing where Edge achieved a 91.4% over the course of 12 days of testing at the NSS Labs in Austin, Texas in recognizing phishing URLs presented to it.  Chrome was at 82.4% while Firefox came in at 81.4%.  This is an important consideration in choosing a browser given the social engineering nature of phishing attacks which can lead to compromised accounts for users.

Continue reading “Microsoft Edge More Secure Than Google Chrome According to NSS”

October Android Security Updates Released

The Android team has released the Android security update patches for October today.  The patches, two this month instead of three, have been released for all supported Nexus devices as well as the Pixel C.  As is the norm, the updates have been released as Factory Images and OTA images for those who want to flash their devices immediately.  If you don’t, the OTA update should be coming to your devices over the course of the next week or so.  For those who have Nexus 6 phones, the news is really great for you as Android Nougat has finally been released for your phone and includes this October update.

Google has been splitting up their patches the last few months and October is no exception.  Unlike the last couple of months however, there are only two this month.  The first patch is the 2016-10–1 patch and it is the one for all devices and manufactures.  It contains 12 high priority security patches, mostly around elevation of privileges and denial of service threats.  The second patch, 2016-10-05, is primarily aimed at Nexus devices and contains 5 critical patches focused on remote code execution.  If you have a Nexus device, you will see the October 5th update which is inclusive of the fixes in the October 1st update.

Continue reading “October Android Security Updates Released”

Google Authenticator Gets a Material Design Makeover

Google has given another fresh coat of paint to their two-factor authentication app, Google Authenticator.  The update is rolling out to the Google Play store now and if you have it installed, you likely will see the OTA for it in the next day or two if not already.  The updated build is version 4.74 for those keeping score at home.  If you aren’t familiar with Authenticator, it is the code generating app when you enable two-factor authentication on your various accounts.  Many services offer two-factor including Google, Microsoft, Evernote, WordPress, Facebook, Twitter, etc.  I strongly urge all readers to enable two-factor on all of their accounts for security purposes.  Yes it is a pain but apps like Google Authenticator allow you to have multiple accounts in the app.

Most of the changes in this update are cosmetic but they are good to see.  First, the app is completely Material Design now which has a nice clean look to it.  The six digit codes generated are now split into two, 3 digit sections so it makes it much easier to read.

Continue reading “Google Authenticator Gets a Material Design Makeover”