Widespread SMS phishing attack thwarted with Cloudflare Zero Trust and YubiKeys

Logo
Presented by

Michael Keane, Zero Trust Product specialist, Cloudflare; Beau Anderson, Solutions Architect, Yubico

About this talk

In July 2022, Cloudflare prevented a breach by an SMS phishing attack that targeted more than 130 companies; these attacks received mainstream media coverage and truly illustrated the vulnerabilities in basic MFA. While some Cloudflare employees opened the phishing messages, Cloudflare was able to thwart the attack due to the company’s use of Cloudflare Zero Trust paired with modern YubiKey MFA. At Cloudflare, phishing-resistant hardware keys are issued to every employee and required to access all Cloudflare applications. In this webinar, you will learn: Real world examples and values of these joint security technologies Best practices for implementation with popular IAM and/or ZTNA platforms Learnings from a cross-company deployment How physical security keys played a crucial role in not allowing Cloudflare to be another victim in this widespread phishing attack. Furthermore, discover the broad uses and functionality of YubiKeys, YubiEnterprise Subscription for YubiKey-as-a-Service flexible purchasing, and YubiEnterprise Delivery for fulfillment of physical security keys to distributed workforces. Confidentiality and Data Processing: The information you provide in this form will be held in confidence by Yubico, Inc. and its Affiliates. Any personal information submitted in this form will be used by Yubico, Inc. and its Affiliates, for their performance of this webinar, and as such, you agree to being contacted and receiving relevant marketing materials. “Affiliate” means an entity that, directly or indirectly, controls, is controlled by, or is under common control with Yubico, Inc.
Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (112)
Subscribers (39326)
Yubico (Nasdaq First North Growth Market Stockholm: YUBICO), the inventor of the YubiKey, offers the gold standard for phishing-resistant multi-factor authentication (MFA), stopping account takeovers in their tracks and making secure login easy and available for everyone. Since the company was founded in 2007, it has been a leader in setting global standards for secure access to computers, mobile devices, servers, browsers, and internet accounts. Yubico is a creator and core contributor to the FIDO2, WebAuthn, and FIDO Universal 2nd Factor (U2F) open authentication standards, and is a pioneer in delivering hardware-based passwordless authentication using the highest assurance passkeys to customers in 160+ countries. Yubico’s solutions enable passwordless logins using the most secure form of passkey technology. YubiKeys work out-of-the-box across hundreds of consumer and enterprise applications and services, delivering strong security with a fast and easy experience. As part of its mission to make the internet more secure for everyone, Yubico donates YubiKeys to organizations helping at-risk individuals through the philanthropic initiative, Secure it Forward. The company is headquartered in Stockholm and Santa Clara, CA. For more information on Yubico, visit us at www.yubico.com.