FB pixel

FBI warns MFA is vulnerable, urges biometric, behavioral authentication methods integration

FBI warns MFA is vulnerable, urges biometric, behavioral authentication methods integration
 

According to the FBI’s recent Private Industry Notice, companies should urgently integrate extra layers of biometric factors and behavior recognition checks to prevent hackers from easily bypassing multi-factor authentication security systems. The Cyber Task Force warns that bad actors have the methods to deceive token and phone-based systems through social engineering, SIM swapping, and account-takeover malware such as Muraena and NecroBrowser.

As a result, the FBI recommends not only training staff to detect social engineering schemes, but also immediately implementing multi-factor authentication that includes biometrics or behavioral authentication methods such as time of day, geolocation, or IP address.

BIO-key claims its biometric hardware and software authentication solutions can fend off attackers and help ensure system protection. The company says its authentication solutions work unrestrictedly with more than 30 fingerprint scanner models from different manufacturers.

“Biometrics should not be an afterthought in a comprehensive Identity Access Management (IAM) strategy,” said Mike DePasquale, BIO-key CEO. “It should be a core design factor in an IAM platform, for end-user authentication, provisioning and governance. BIO-key offers our customers a comprehensive set of biometric authentication options, both on-device and on-server, to meet the real needs of business users.”

The company’s biometric authentication solutions were recently chosen by more County Election Boards in Florida to enhance the identification and authentication process for staff members and volunteers managing the voting process for the 2019 regional elections and the 2020 presidential election.

In September, BIO-key introduced a Channel Alliance Partner (CAP) program for Managed Service Providers (MSPs), Security Integrators, and VARs that deliver integrated multi-factor biometric security solutions for their customers.

According to Forbes, the FBI’s recent warning is quite unexpected, as multi-factor authentication in the form of a token or code received as text on a phone has been one of the key defenses in cybersecurity and identity verification so far. Digital Barriers CEO and Founder and Forbes contributor Zak Doffman explains the shock comes from an incredibly low number of attacks targeting multi-factor authentication.

A Microsoft report he cites says “The rate of compromise of accounts using any type of MFA is less than 0.1% of the general population” because “less than 10% of users per month” secure their enterprise accounts with multi-factor authentication.

Article Topics

 |   |   |   |   |   |   |   | 

Latest Biometrics News

 

Saudi Arabia’s Absher digital identity for financial inclusion and transactions

The Absher platform in the Kingdom of Saudi Arabia has emerged as the core pillar of the country’s efforts towards…

 

Malawi begins biometric voter registration pilot to test new system

A trial voter registration process will begin in Malawi tomorrow September 13 to put the country’s new Electoral Management Device…

 

Biometrics pilots, launches and investments foreshadow next areas for growth

Biometrics pilots, a patent, predictions and acquisitions paint a picture in the most popular news items of the week on…

 

Biometrics firms pitch privacy in age assurance ahead of US court battle

The U.S. is facing its first constitutional debate connected with age verification in 20 years: The Supreme Court will have…

 

Google announces beta test for digital IDs based on biometrics and US passports

A new type of digital ID based on U.S. passports in Google Wallet has been introduced ahead of beta testing….

 

Permira finalizes $1.3B majority stake acquisition of BioCatch

Permira Growth Opportunities has completed the acquisition of a majority position in behavioral biometrics and fraud prevention business BioCatch, four…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events