Information security firm SafeNet has made its corporate mobile device credentialing solution capable of enabling consumer mobile devices.

SafeNet extended the capabilities of its credentialing system in an effort to address the challenges companies are facing with regards to employees using personal devices to access corporate networks. 

Stolen identity credentials were the second most compromised data type leading to unauthorized access to corporate networks, according to Verizon’s 2011 Data Breach Investigations Report.

“Stolen credentials are most often a means to an end but are increasingly an end in and of themselves. They can be used to further an attack by gaining privileged and persistent access into the victim’s environment,” the report states. “There is also a growing market for offloading stolen credentials directly by selling or renting access to organizations (especially high profile ones). That authentication credentials represent such a low proportion of records shouldn’t be surprising; a lot of damage can be done with just one valid account in the wrong hands.” 

IT services provider ii2P has launched a USB-based password management device. Called MyLOK, the tool enables users to protect their password and login information through encryption and PIN-based recovery.

The device enables password management through a USB drive embedded with a Multos smart chip. Two-layer authentication is necessary to access the login information and is supplied through using the device and a PIN. When the device is compromised, the smart chip self-destructs. An optional random generator adds another layer of security. 

Texas-based online billing and revenue management firm Transverse has announced a partnership with OneLogin for simplifying cloud-based application login.

The partnership enables Transverse to implement OneLogin’s SAML-based single single-on for cloud-based applications on its TRACT rating and billing product. 

Google Android smartphone users now have to watch for a new trojan that steals one-time banking passwords.

SC Magazine reports the Zeus trojan is a version of Zitmo, a mobile trojan application, that’s designed to steal mobile transaction authentication numbers (mTANs) in relation to banking transactions. 

In an effort to draw companies to adopt its IdentityGuard security program, Entrust is offering a hard-token replacement program.

Companies that wish to partake in the hard-token replacement program must already be users of IdentityGuard 9.3 or higher, or purchase IdentityGuard 10.0. Entrust will replace up to 5,000 users’ hard tokens with mobile and soft tokens. Companies do not need to turn in their old hard tokens as part of the program requirements. 

Gemalto announced the launch of its 2011 eBanking Security Guide. This ten-step guidebook for securing online banking offers North American banks a solution to meet Federal Financial Institutions Examination Council’s (FFIEC) guidance.

Gemalto’s eBanking Security Guide is free of charge and illustrates, step-by-step, how banks best address the new landscape of layered security, risk-based authentication and dynamic transaction verification.

The eBanking Security Guidebook and other information can be found here.