Analyzing the Collection 01 Passwords

By Eric SmithFebruary 15, 2019February 15, 2019 Information Management, Information Security, Information Technology, Knowledge Management Collection 01, Cybersecurity, Data Breaches, Password Hygiene, Password Management

Collection #1 Password Analysis by Eric Smith, FireOak Strategies Chief Technologist & Information Security Officer February 15, 2019 In January 2019, a massive database of email addresses and passwords was released on the internet. The collection included over 773 million unique email addresses and 21 million unique passwords, credentials that were assembled from many data…

Multi-Factor Authentication

By Abby ClobridgeJune 20, 2017January 20, 2019 Information Security Password Management

When implemented properly, multi-factor authentication dramatically strengthens security defenses, making it much more difficult for attackers to use stolen credentials.

LastPass Authenticator Security Evaluation

By Eric SmithMarch 21, 2016June 23, 2017 Information Security LastPass, Multi-Factor Authentication, Password Management, Proactive Information Security

In March of 2016, LastPass announced the availability of LastPass Authenticator, a smartphone app that provides push-based multi-factor authentication (MFA) for users of their cloud-based password management service.

LastPass Authenticator Security Review: Part 2

By Eric SmithMarch 21, 2016June 25, 2017 Information Security LastPass, Multi-Factor Authentication, Password Management, Proactive Information Security

Part 2 of our in-depth review of the LastPass Authenticator.

LastPass Authenticator Security Review: Part 1

By Eric SmithMarch 21, 2016June 25, 2017 Information Security LastPass, Multi-Factor Authentication, Password Management, Proactive Information Security

We took an in-depth look at the architecture, communications, and security of the LastPass Authenticator app in our lab in order to better understand the technology being used and whether or not the security is adequate for protecting a high-value asset such as LastPass.