Two-factor authentication key to securing cloud

Grazed from SecureIDNews.  Author: Thomas Flynn.

It’s been six years since the notable cloud service breach at Salesforce.com, when an employee surrendered a password in a phishing attack against the company. As a result, hackers were able to obtain the details of thousands of Salesforce customers, and then target them with a series of phishing emails that appeared to be from the company. At the time, Salesforce told its customers to “consider using two-factor authentication.”

Fast forward to today and cloud security issues continue to persist. Last October, hackers managed to get past the security of Adobe’s Creative Cloud and its Revel photo sharing service to obtain Adobe customer IDs and encrypted passwords. If Adobe customers were using two-factor authentication, they would have been safe because the compromised passwords would have been useless without the second authenticator…


Whether you are providing and/or accessing a public, private or hybrid cloud, two-factor authentication is critical. Yet today, the majority of enterprises using multiple cloud services still choose convenience over security. This is primarily due to an outdated perception that implementing strong authentication is complicated, costly, hard to get management approval for, difficult to deploy and inconvenient for users…

Read more from the source @ http://secureidnews.com/news-item/two-factor-authentication-key-to-securing-cloud/