Connect with Duo users and security professionals in our Community.
Can't find what you're looking for? Contact Sales or Contact Support.
Featured Articles
Making the Switch to Duo: Why Customers are Replacing RSA
Many large enterprise organizations are switching from legacy two-factor solutions – which add friction, cost and complexity – to Duo's lightweight, cloud-based solution that's both designed for the modern era and reduces overhead while adding greater security benefits.
Duo Labs / Featured Article
Bug Hunting: Drilling Into the Internet of Things (IoT)
In his latest bit of odd research, Duo Labs' Mark Loveless takes a closer look at IoT as he pulls apart a wireless drill, bit by bit.
Industry News / Featured Article
New Phishing Tactics & Gmail Phishing Prevention
New phishing attacks are encrypting their web pages to appeal to users’ security sensibilities, while Gmail releases a suite of security tools to crack down on phishing emails.
Press and Events / Featured Article
Duo Security and Global Risk Institute Host Discussion on Cyber Risk and Security in Canada
Duo Security and Global Risk Institute (GRI) co-hosted an executive breakfast in Toronto to provide an update on current security trends and key information that leaders need to know.
Recent Articles
New Phishing Tactics & Gmail Phishing Prevention
New phishing attacks are encrypting their web pages to appeal to users’ security sensibilities, while Gmail releases a suite of security tools to crack down on phishing emails.
Industry News / Featured Article
Now Available: The 2017 Duo Trusted Access Report
You can't secure what you can't see. To shed light on who’s at risk, Duo has collected and analyzed our dataset of 4.6 million endpoints, completing over two hundred million authentications a month - all now available in The 2017 Duo Trusted Access Report.
Driving Headless Chrome with Python
Back in April, Google announced that it will be shipping Headless Chrome in Chrome 59. Since the respective flags are already available on Chrome Canary, the Duo Labs team thought it would be fun to test things out and also provide a brief introduction to driving Chrome using Selenium and Python.
HHS Urges HIPAA Guidance for Dealing With Ransomware
In the wake of the widespread ransomware attack launched last Friday that has quickly spread worldwide, the Dept. of Health and Human Services (HHS) sent an email reminder to healthcare organizations, urging them to adhere to the Office for Civil Rights’ (OCR) ransomware guide published last year.
The Competitive Advantage of Integrating Security & Privacy into Your Business Strategy
Organizations are exploring how to gain a competitive advantage by integrating information security and privacy with their business strategy, according to a 2017 cybersecurity report from PricewaterhouseCoopers (PwC).
Industry News / Featured Article
Widespread Ransomware Attack Plagues Europe, Asia & U.K. Hospitals
A widespread, worm-like ransomware attack has shut down computers across Europe and Asia, hitting the Spanish telecom provider, Telefonica and operations in major U.K.-based health systems especially hard.
A Security Analysis of Over 500 Million Usernames and Passwords
Here’s Duo Labs’ analysis of the Anti Public Combo List, over 500 million usernames and passwords aggregated from a variety of breaches and password dumps.
SMS-Based Two Factor Exploited in Bank Account Transfer Scheme
Yet another example of how SMS-based two-factor authentication is not secure can be seen in the recent Signalling System No. 7 (SS7) attacks in January. Malicious hackers redirected money from German customers’ banking accounts to their own accounts in a series of attacks, according to Ars Technica and Süddeutsche Zeitung.
Duo Labs / Featured Article
The macOS Phishing Easy Button: AppleScript Dangers
An attacker can send phishing dialogs to users by writing a few lines of AppleScript, effectively allowing them to steal Apple ID or local user account credentials. Here’s our technical overview of the dangers of AppleScript.
Gmail OAuth Phishing Goes Viral
On Wednesday, a Gmail phishing attack leveraging OAuth spread quickly to multiple users. There are a number of features that you need to be aware of that made this attack incredibly successful, as well as ways to protect yourself or your employees.
Stop the Pwnage: 81% of Hacking Incidents Used Stolen or Weak Passwords
According to the 10th edition of the Verizon Data Breach Investigations Report, 81 percent of hacking-related breaches leveraged stolen and/or weak passwords. Other trends include a jump in phishing, web application and ransomware attacks.
Education, Healthcare & Government Targeted by Stolen RDP Logins
Education and healthcare are among the most frequently targeted industries, at least when it comes to the amount of stolen remote desktop protocol (RDP) logins up for sale on the dark web, according to an analysis of 85,000 servers from Flashpoint.
Phishing Across the Pond: 70% of U.K. Universities Impacted
Back in November 2016, we filed Freedom of Information (FoI) requests to 70 universities across the U.K. asking questions around each institution’s experiences with phishing. The responses we received indicate that phishing is still a major security challenge – even for top universities.
June, 2017
May, 2017
April, 2017
March, 2017
February, 2017
January, 2017
December, 2016
November, 2016
October, 2016
September, 2016
August, 2016
July, 2016
June, 2016
May, 2016
April, 2016
March, 2016
February, 2016
January, 2016
December, 2015
November, 2015
October, 2015
September, 2015
August, 2015
July, 2015
June, 2015
May, 2015
April, 2015
March, 2015
February, 2015
January, 2015
December, 2014
November, 2014
October, 2014
September, 2014
August, 2014
July, 2014
June, 2014
May, 2014
April, 2014
March, 2014
February, 2014
January, 2014
December, 2013
November, 2013
October, 2013
September, 2013
August, 2013
July, 2013
June, 2013
May, 2013
April, 2013
February, 2013
January, 2013
December, 2012
November, 2012
September, 2012
August, 2012
July, 2012
June, 2012
May, 2012
March, 2012
February, 2012
January, 2012
September, 2011
August, 2011
July, 2011
June, 2011
May, 2011
April, 2011
December, 2010
