According to SearchSecurity, Microsoft announced during its Ignite 2021 virtual conference that it is replacing traditional username and password combinations for its Azure Active Directory with more secure and reliable authentication options like Temporary Access Pass, verifiable credentials and digital cards. The company introduced the passwordless security in an effort to adapt to security concerns brought by the COVID-19 pandemic and the SolarWinds supply chain attacks, said Joy Chik, Microsoft’s corporate vice president for its identity division. “As of today, passwordless authentication is generally available for cloud and hybrid environments. This is a big milestone for us in the industry,” Chik added. “Passwords are one of the most common attack vectors. It is easy to set up a passwordless account using Temporary Access Pass. This is a time limited password that allows the user to enter password authentication methods and recover access to their account without a password,” said Microsoft Senior Program Manager Inbar Kobrinsky.
Jill Aitoro is senior vice president of content strategy for CyberRisk Alliance. She has more than 20 years of experience editing and reporting on technology, business and policy. Prior to joining CRA, she worked at Sightline Media as editor of Defense News and executive editor of the Business-to-Government Group. She previously worked at Washington Business Journal and Nextgov, covering federal technology, contracting and policy, as well as CMP Media’s VARBusiness and CRN and Penton Media’s iSeries News.
Google Cloud recently introduced Community Security Analytics (CSA), a set of open-sourced queries and rules for self-service security analytics geared toward helping security teams detect common cloud-based threats.