Our Blogs

October is Cybersecurity Awareness Month – an important time of the year dedicated for the public and private sectors to work together to strengthen cybersecurity practices globally. The Cybersecurity and Infrastructure Security Agency (CISA) continues the theme of...

As we enter into the last few months of 2024, Yubico has a lot in store with a continued focus on innovation and garnering feedback from our valued community around the world. After an exciting year for the company filled with numerous announcements spanning new and...

In a world that’s more connected than ever before, cyber attacks are more rampant than ever with bad actors continuing to take advantage of human error. Despite ongoing advancements in security technologies and processes, it continues to be fairly simple to compromise...

The October 17, 2024 deadline for European Union (EU) Member States to implement the NIS2 Directive into their respective national legislations is fast approaching. We first highlighted NIS2 and the new requirements in a blog post back in March 2023, and now that  the...

Zero Trust Architecture (ZTA) represents a paradigm shift in cybersecurity strategy, moving away from the traditional perimeter-based security model to one that assumes no implicit trust, even within the network. In compliance with Executive Order 14028 to improve the...

As the rate and complexity of credential theft and phishing attacks on enterprises continue to increase rapidly, so do the number of server-based attacks. YubiHSM 2, the leading nano-form factor hardware security module (HSM), offers organizations superior protection...

Yubico has had an impressive first half of the year, with plenty of exciting developments as the company continues to scale. To get the inside scoop, I caught up with Yubico’s CEO, Mattias Danielsson, to chat about the standout moments so far, the current landscape of...

Operational Technology (OT) is a critical component of several industries as it powers the systems that control the distribution of power, water and other utilities, drives the machinery that powers manufacturing, and controls everything from traffic lights to tanker...

Break glass accounts are crucial accounts that provide access to critical systems during a variety of emergencies. Microsoft’s recent announcement on the enforcement of multi-factor authentication (MFA) for Microsoft Entra ID sign-ins highlights the impact on break...

**NOTE: This blog was originally published on August 1, 2024 and has been updated to reflect the shipping timeline of the keys on August 13, 2024 Following the release of 5.7 firmware on the YubiKey 5 Series and Security Key Series in May, we are excited to announce...

In the ever-evolving digital landscape, safeguarding online identities has become more critical than ever. As we navigate a world filled with accounts, passwords and sensitive information, the need for robust security solutions that center around the user is paramount. Traditionally, the way to gain access to various online sites and services has only been through 
The post Works with YubiKey Spotlight: Securing your password managers with the YubiKey appeared first on Yubico.

As a market leader for open source software products, Red Hat is renowned for helping organizations address modern challenges to technology and cybersecurity trends through innovative solutions that meet evolving demands. Specifically, their perpetual dedication to robust security and authentication standards ensures users, enterprises and agencies can carefully monitor and regulate access to their environments
The post Red Hat Enterprise Linux 9.4 adds passkey support for centrally managed users, including YubiKeys appeared first on Yubico.

NIST recently released an update to SP800-63B to provide guidance on syncable authenticators. As FIDO passkeys continue becoming more adopted and available at a large scale, NIST guidance helps organizations properly position and plan so they can successfully implement synced passkeys both internally and externally.  Within the guidance, it’s important to understand the nuance of
The post New NIST guidance on passkeys: Key takeaways for enterprises appeared first on Yubico.

Passwords are ingrained in enterprises with traditional identity lifecycle stages, which exposes them to increasingly sophisticated cyber attacks that rely on stolen login credentials for success like phishing. Phishing is one of the greatest cybersecurity risks that enterprises face – in fact, stolen passwords are one of the largest threat vectors compromising online security today
The post Eliminating enterprise risk: One phishing-resistant user at a time appeared first on Yubico.

Phishing, a common tactic used by hackers to obtain access to sensitive information, is accredited as a contributing factor in over 80% of all security breaches. Phishing occurs when malicious actors impersonate a legitimate entity to deceive people into providing personal information  – typically via email, social media, text messages, or fake websites. Once the
The post From passwords to passkeys: Entering a new era in cybersecurity appeared first on Yubico.