Only 3 steps! How to protect your account login information from threats

According to lifehacker on August 28, Microsoft’s decision to reset passwords for 44 million accounts is actually a good thing. If you’re one of the people whose accounts are affected, you can thank Bill Gates. That’s because Microsoft is searching its database of more than 3 billion accounts that were leaked and alerting people to the fact that some of them contain information about you.

What can I do to protect my account?
Microsoft has been forcing you to reset your account for a significant period of time in 2019. Whether or not you were asked to create or set a new password, a recent report from Microsoft’s security agency offers the following suggestions for those who want to further protect their accounts Given the frequency with which passwords are reused by multiple users, it is important to protect passwords with some form of strong authentication. Multi-Factor Authentication (MFA) is an important security mechanism that dramatically increases (each user’s) preparedness for security. With MFA enabled, 99.9% of identity attacks have been proven to be thwarted; you can learn more about Microsoft’s Azure MFA here. Microsoft also offers a solution to protect customers from replay attacks. It warns users that they are at high risk and notifies administrators to force password resets. Frankly, these are not things that Microsoft should be doing. I would be happy if they did, and I wish all companies were as diligent in protecting the login information of their own users’ accounts. But this is something you can do.

1. use two-factor authentication
First, you should always use two-factor authentication for your account if it is available. It is easy to find out which company or service offers it, and it only takes a little time to set up. This does not guarantee perfect security, but it does make it much harder for an attacker to break into your account, even if they know your login and password.

Read the full article here.

FIDO Authentication Security Key is now listed on Crowdfunding CAMPFIRE.

CAMPFIRE Listing Period
September 20 to November 15
The public URL is here.

TrustKey Inc.

TrustKey aims to provide the world’s best security authentication solutions

TrustKey was established in 2020 with the goal of providing the world’s best security authentication solution

TrustKey was established in 2020.

Product Information: T Series

USB type hardware security

Based on eWBM’s MS500 microprocessor with powerful security features

Strong touch-based authentication and PKI (Public Key Infrastructure) based mechanism

Simple and easy-to-understand login

CAMPFIRE posting period
September 20 to November 15
Publication URL is here.

Product Information: G Series

World’s highest level fingerprint authentication algorithm

Level 2 is currently the highest level in the FIDO Alliance.

■Main Features
Fast login without password

TrustKey allows users to log in easily and securely without passwords.

■User Protection
TrustKey T series security keys support multi-protocol authentication methods including FIDO2 and FIDO U2F.

It supports multi-protocol authentication methods including HOTP/TOTP (one-time passcode) and protects users from authentication information hijacking by phishing and MITM (man-in-the-middle) attacks.

■Supports multiple client devices
Trust Key is a roaming authentication.

It can be used with multiple user devices.

Support for Microsoft Azure AD
TrustKey fully supports Microsoft Azure AD. It can be used to sign in to any Windows PC participating in Azure, whether online, offline, or in airplane mode.

CAMPFIRE Listing Period
September 20 to November 15
Publication URL is here.

■TrustKey Supporting Applications
TrustKey works with hundreds of products, services, and applications.

Major FIDO Board Member Companies
Aetna,amazon,americanexpress,apple,arm,bccard,daon,egis,facebook,feitian,google,idemia,infineon,ing,intel,jumio,lenovo,line, microsoft,noknok,docomo,onespan,onfido,paypal,qualcomm,raon,rsa,samsung,synaptics,thales,trustkey,usaa,visa,vmware,wellsfargo yahoo Japan,yubico,maxmind,nulab,onelogin,etc.

CAMPFIRE Listing Period
September 20 to November 15
The public URL is here.

Product Specifications

Supported OS: Windows, macOS, Linuz, iPadOS, Android, Chrome OS, etc.

Supported browsers: Chrome, Edge, Fire ox, Safari, Whale, Brave, etc.

CAMPFIRE Listing Period
September 20 to November 15
Publication URL is here.

For inquiries about Yubikey, Pocket Key, Trust Key and other security keys, please contact
acsjapan@kofukutrading.com

See you next time on K-blog.

Follow me!