The New NIST Digital Identity Guidelines and What They Mean to You
With the most recent draft of its Digital Identity Guidelines, NIST revised many of its federal recommendations regarding passwords and access management.
Gone Phishing: Don’t Fall for the Bait
Phishing attacks used to be the work of hobbyists, but now professional fraudsters are leveraging stolen credentials to compromise multiple accounts.
One Small Sticky Note on a Password Wall, One Giant Leap for Security
If you're writing down your passwords on adhesive notes or in a journal, you might need a refresher on password security best practices.
Trust, but Verify: Authentication Without Validation Is Naïve
Fraudsters have rendered traditional authentication factors — something you know, something you have and something you are — ineffective.
It’s Time for Users to Pony Up and Quit Reusing Passwords
By reusing passwords across multiple services, users make it easier for cybercriminals to breach all their accounts, not to mention company databases.
Two-Factor Authentication: A Little Goes a Long Way
Online services are understandably reluctant to add steps to the login process, but a little two-factor authentication can significantly boost security.
Too Many Passwords: Is the End in Sight?
Will passwords become things of the past in 2017? Today, organizations tasked with managing too many passwords are at risk of phishing and malware attacks.
Dangle Carrots in Front of Users to Correct Their Terrible Password Hygiene
Rewarding users for strong password selection can be a good way to eliminate terrible password hygiene throughout an organization.
Eliminate Weak Passwords With Regular Auditing
As countless security compromises have shown, weak passwords are a common root cause for the initial breach of a victim network.
Compromised Before My Very Eyes: How I Almost Got Hacked
Here's the story of how I almost got hacked — and what you can learn from my close call to ensure the data breach doesn't happen to you.