惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
WordPress大学
WordPress大学
宝玉的分享
宝玉的分享
人人都是产品经理
人人都是产品经理
博客园 - 聂微东
IT之家
IT之家
V
V2EX
Jina AI
Jina AI
V
Visual Studio Blog
有赞技术团队
有赞技术团队
博客园 - 司徒正美
博客园 - 叶小钗
The Cloudflare Blog
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
小众软件
小众软件
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
博客园 - 三生石上(FineUI控件)
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
Google DeepMind News
Google DeepMind News
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
腾讯CDC
Google Online Security Blog
Google Online Security Blog
博客园 - 【当耐特】
Apple Machine Learning Research
Apple Machine Learning Research
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
N
News and Events Feed by Topic
N
News and Events Feed by Topic
The Last Watchdog
The Last Watchdog
W
WeLiveSecurity
月光博客
月光博客
Security Archives - TechRepublic
Security Archives - TechRepublic
Webroot Blog
Webroot Blog
SecWiki News
SecWiki News
博客园_首页
罗磊的独立博客
量子位
Latest news
Latest news
I
Intezer
V
Vulnerabilities – Threatpost
A
Arctic Wolf
Last Week in AI
Last Week in AI
Recent Commits to openclaw:main
Recent Commits to openclaw:main
S
SegmentFault 最新的问题
S
Security Affairs
阮一峰的网络日志
阮一峰的网络日志
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
酷 壳 – CoolShell
酷 壳 – CoolShell
P
Palo Alto Networks Blog
C
CXSECURITY Database RSS Feed - CXSecurity.com
N
News | PayPal Newsroom

Yubico

OpenAI mandates hardware-backed passkeys for Trusted Access Cyber members to log into ChatGPT accounts Works with YubiKey Spotlight: Translating YubiKey logistics into enterprise cyber resilience with EgoMind’s Appterix Google Play Services adds support for NFC-enabled FIDO2 security keys: How Yubico makes Android passkey authentication seamless Post-quantum cryptography is now a federal mandate: Here’s what it means and what your agency should do now Secure it Forward Spotlight: Cyber defenders as a force for resilience New Executive Order on AI: Identity as a critical foundation for trusted AI YubiKey 5 FIPS Series and YubiHSM 2 FIPS are now FIPS 140-3 validated: What it means for high assurance security Secure It Forward Spotlight: Securing independent journalism with Radio Free Europe / Radio Liberty The passkey spectrum: Importance of user choice in digital security journeys OpenAI’s Advanced Account Security program: Top 5 things Codex users need to know New to OpenAI’s Advanced Account Security program? Here’s how to add your YubiKey to ChatGPT accounts Leading Yubico forward: Q1 reflections and securing the AI frontier Building a safer AI journey: How to add your YubiKey to ChatGPT accounts OpenAI partners with Yubico: What it means for the future of AI-based workflows and the role of the human Works with YubiKey Spotlight: Securing the AI frontier and high-assurance infrastructure Yubico’s commitment to securing the future of digital identities: Reflecting on RSAC 2026 YubiKey as a Service expands to Ping Identity with pre-configured security keys Securing agentic AI: Why automation still needs human oversight Yubico officially lands in Singapore: Opening our third global headquarters Welcome to YubiNation Partners: Reimagining the Future of Channel Partnership to Secure Identity at Scale Yubico’s Clifton Slater recognized as a CRN 2026 Channel Chief Leading Yubico into the Future: 2025 Reflections and Our 2026 Roadmap Fireside chat: Meet Yubico’s new acting CEO, Jerrod Chong Yubico will introduce secure and privacy capable passkey enabled digital signatures in upcoming 5.8 firmware The 265% ROI of phishing resistance with Yubico: Why modern enterprises are ditching legacy MFA for YubiKeys
Salesforce enforces MFA for all employee logins: Here’s what you need to know
Dawn Manley · 2026-06-18 · via Yubico

Salesforce is making one thing clear: traditional authentication methods are no longer enough.

Beginning June 22, 2026, Salesforce is raising the security bar for employee logins by enforcing multi-factor authentication (MFA) in sandbox environments, followed by a phased rollout to production environments on July 1. For privileged users – including System Administrators and other users with elevated permissions – Salesforce will require phishing-resistant MFA methods such as security keys like the YubiKey and built-in authenticators that leverage FIDO2 and WebAuthn standards.

This is more than a routine security update. It reflects a broader industry shift: phishing-resistant authentication is becoming the standard for protecting privileged accounts and high-risk actions. It also underscores a larger trend toward stronger identity verification as organizations face increasingly sophisticated cyber threats, many which are accelerated by AI. 

AI is making phishing attacks faster, more convincing, and easier to scale. Highly sophisticated social engineering campaigns can now trick even the careful users and bypass passwords and legacy MFA. Identity has become the primary attack surface for modern cybercriminals, with 86% of phishing attacks now being AI-driven.

Strong, phishing-resistant security is no longer a luxury reserved for a handful of specialized roles; every user logging into an enterprise system holds a piece of the attack surface.

Why Salesforce is making this change

Through this move, Salesforce is differentiating between traditional MFA, such as SMS codes, TOTP apps and push notifications – which are vulnerable to phishing, social engineering, or account recovery attacks – and phishing-resistant MFA. Hardware-backed security keys, like the YubiKey, offer stronger defense because they rely on cryptographic proof rather than shared secrets or one-time codes.

Phishing-resistant authentication is fundamentally different from legacy MFA. The private key stays on the physical device, and there is no software path for an attacker to extract or phish it remotely. The authentication process verifies both the user and the legitimate website before access occurs, which significantly reduces the risk of credential theft and account takeover.

Salesforce explicitly recognizes security keys and built-in authenticators as phishing-resistant methods for privileged users. Traditional authenticator applications do not meet these requirements for administrators and other high-privilege accounts.

Step-by-step guide: How to add YubiKeys to Salesforce accounts

As enforcement dates approach, organizations should begin preparing now to avoid disruptions. Recommended actions include:

  1. Identify users with privileged Salesforce permissions.
  2. Verify MFA configurations across both direct and SSO-based logins.
  3. Enable phishing-resistant authentication methods for administrators and power users.
  4. Register primary and backup authentication methods before enforcement begins.
  5. Review authentication policies to ensure compliance with Salesforce’s updated requirements.

Enabling your YubiKey on Salesforce accounts is quick and straightforward. Before you begin, ensure you have your physical YubiKey ready, then follow these steps:

  1. Log in to your Salesforce account.
  2. Click on your avatar in the upper-right corner and select Settings or Advanced User Details.
  3. Find the Registration: Security Key (U2F/WebAuthn) option and click Register.
  4. You may be prompted to log in again to verify your identity.
  5. Insert your YubiKey into an available USB port or hold your NFC-enabled near your mobile device.
  6. When the YubiKey’s edge light begins to flash, touch the copper sensor on the key to generate your device-bound credential.
  7. Enter a recognizable name for your security key, such as “Primary YubiKey,” and click Save.

As an industry best practice, register a secondary backup YubiKey and store it in a secure location to reduce the risk of account lockout.

For many organizations, Salesforce will be one of the first systems where phishing-resistant authentication becomes mandatory, but it likely won’t be the last. Organizations that act now will meet compliance requirements and be better positioned to protect their users, data, and business operations against the next generation of cyber threats.

Don’t wait for the July 1 deadline. Equip administrators and power users with the gold standard of phishing-resistant protection today.

——

For more information on integrating YubiKeys into Salesforce accounts, visit here. To learn more about how YubiKeys can secure your cross-platform enterprise environment, contact our team.