Blog
The Latest News and Insights from Our Team
Find out what we have been up to plus our thoughts and insights on the latest news
GreenRADIUS Update – v4.4.7.7
The latest update has been released. This includes a few important security updates and some minor enhancements. The release notes can be found here. This update is for GreenRADIUS v4.4.4.4 and above. Please contact us if you are interested in learning more.
Advantages of on-premise MFA
When considering MFA solutions, organizations may weigh cloud offerings versus on-premise deployments. As GreenRADIUS is primarily an on-premise MFA solution, there are key advantages over cloud MFA providers: GreenRADIUS deployments can be deployed within your...
GreenRADIUS not vulnerable to Log4j vulnerabilities
Summary CVE-2021-44228 and CVE-2021-45046 (Log4Shell or LogJam) are both zero-day vulnerabilities in the widely used Apache Log4j Java-based logging library. Since it is widely used in many popular products, customers have contacted Green Rocket Security asking if the...
Green Rocket Security Now Offers YubiKey OTP Validation Only Support (Alternative to YK-VAL and YK-KSM)
In April 2021, Yubico announced “YK-VAL, YK-KSM and YubiHSM 1 End-of-Life”, referencing that the libraries used outdated/vulnerable technologies. As an alternative - in the same article, Yubico continues - “Yubico recommends customers who use these libraries to...
SolarWinds Hack Highlights The Importance of Multi-Factor Authentication
A large-scale cyber-attack was confirmed earlier this week that includes breaches into United States federal government agencies. On Monday, SolarWinds confirmed that Orion - its flagship network management software - had served as the unwitting conduit for a...
A GreenRADIUS Two-Factor Authentication Plugin for WordPress
Weak passwords and cross-site password reuse are two of the most common ways to break into a WordPress installation. Fortunately, WordPress plugins are able to augment the system’s default authentication. Our GreenRADIUS WordPress Authentication Plugin upgrades your...
LokiBot Trojan: Information Thief, Key capture (keylogger) and more…
LokiBot Trojan Malware (a.k.a LukiBot, Lokibot, Loki PWS, and Loki-bot) is active again stealing sensitive information such as usernames, passwords, cryptocurrency wallets, and other credentials. It was first discovered in 2015 and has been used in attacks on and off...
“Tycoon” Ransomware, Protection with GreenRADIUS MFA for RDP
A new ransomware has been uncovered by Blackberry that has been "in-the-wild" since at least December 2019. Named "Tycoon", it targets Windows and Linux systems on compromised networks. And it seems to specifically target the education and software sectors. It's an...
Green Rocket Security introduces our GRS ADFS Plugin enabling MFA in ADFS environments
Microsoft ADFS (Active Directory Federation Service) offers a Single Sign On (SSO) solution to users for applications, services and resources inside the organization (such as Web apps and disparate apps and resources) as well as SSO to the company’s subscription based...
Novel Coronavirus / COVID-19 – How Green Rocket Security Can Help
As the Novel Coronavirus / COVID-19 impacts life around the world, it has also forced many workers to connect and work remotely. This opens up users and organizations to potential threats with remote access being one of the prime targets for hackers. In an in-person...
2FA for GNOME Desktop for Linux
Did you know that the GNOME Desktop Manager supports two-factor authentication for protection? The GNOME Desktop Manager (GDM) performs its user authentication through PAM (Pluggable Authentication Module). PAM is a highly configurable system used to control how...
What’s New with GreenRADIUS v4.0 — FIPS and Containerization
We are excited to announce the release of GreenRADIUS v4.0! With this release, GreenRADIUS becomes even more versatile to meet various customer requirements. Among the most important changes are the following: FIPS 140-2 complianceContainerizationUpgrade to Ubuntu...
Be Sure To Add 2FA to Internal Systems As Well
Generally, when we think of securing our organization, we usually focus on securing the perimeter with firewalls, VPNs, limiting access points, and maybe some mail filtering to block malicious attachments. But some attacks that have been talked about recently show...