Passwords
Passwords | News, how-tos, features, reviews, and videos
Are regulations keeping you from using good passwords?
Most companies are using password "best practices" that are out of date and ineffective. Regulations are getting in the way of changing them.
Salted Hash – SC 02: What a TSB phishing attack looks like
In April, TSB (a retail and commercial bank in the UK) announced they would shutdown some systems for an IT upgrade. However, the upgrade was a disaster, and over a month later customers are still having problems. As a result,...
How risk-based authentication has become an essential security tool
A new generation of risk-based authentication (RBA) products can improve both customer experience and security. Here's what to look for in them.
One year later: security debt makes me WannaCry
WannaCry rocked the world one year ago, but there are still lessons for us to unpack about the debt we still have to pay to be secure.
Salted Hash - SC 01: What an Apple phishing attack looks like
Today on Salted Hash, we’re going to look at a phishing attack from two sides. The first side will be what the victim sees. After that, we're going to see what the criminal sees. We'll also discuss some steps administrators can take...
video
What an Apple phishing attack looks like | Salted Hash Ep 32
How can you tell the difference between a legitimate email and a phishing attack? Host Steve Ragan shows what an Apple phishing attack looks like, screen by screen, showing the difference between the real and the fake.
Will WebAuthn replace passwords or not?
Or, the password is dead – long live the password.
Security Smart, Winter 2018
From the editors of CSO, Security Smart is a quarterly newsletter ready for distribution in your organization. We combine personal device and home safety tips with organizational security awareness, making security training relevant,...
1.4B stolen passwords are free for the taking: What we know now
The 2012 LinkedIn breach, along with other old third-party breaches, is still paying dividends for criminals, who now have free access to 1.4 billion previously exposed email addresses and passwords.
The borg ate my login
There is no ‘one size fits all’ solution for bots...
What cybersecurity surprises does 2018 hold?
One thing's for sure: securing ourselves and our organizations will only get more difficult this year.
Security myth: my admins would quit if I implement a password vault!
The issue of secure password vaulting and the concern that something like that could never work at your company.
In the aftermath of yet another Meltdown, no secrets are safe
Meltdown and Spectre reveal that perfect information protection comes at an increasingly steep cost.
Password managers grow up, target business users
Enterprise-class password managers fill key security gaps left by single sign-on (SSO) and cloud access solutions.
Leaked 1.4 billion credentials a risk to users and business
A more nuanced conversation is required to understand the risks that this interactive database poses to organizations.
Unraveling the truth about the NIST's new password guidelines
tl;dr: if you’re using a password manager, you should be in really good shape.
Top 25 worst, most insecure passwords used in 2017
SplashData released a list of the top 100 most popular, and therefore dangerous, passwords used in 2017.
Salted Hash Ep 12: Zero trust networks and other things that caught our attention in 2017
This week's episode of Salted Hash is the last one for 2017, so we're closing out the year by talking about security wins, and the incidents that held the attention of our panel. Steve is joined by Akamai's Dave Lewis, Andy Ellis and...
Sponsored Links
- What are you doing to accelerate IT agility? Learn about the IT model that serves as a catalyst for digital transformation.
- dtSearch® instantly searches terabytes of files, emails, databases, web data. See site for hundreds of reviews; enterprise & developer evaluations
- Unlock the potential of your data. How well are you harnessing information to improve business outcomes? A new CIO Playbook will help.
- Learn why advanced analytics should be considered the critical workload in a hybrid cloud infrastructure for today’s business
- To remain competitive, Cloud providers must deploy next-generation technologies that deliver the performance that new enterprise workloads demand
- The powerful combination of machine vision and AI is solving some of the toughest societal and business challenges
- Intel FPGAs are the foundation for a new type of data center with the versatility and speed to handle a variety of workloads