With the most recent draft of its Digital Identity Guidelines, NIST revised many of its federal recommendations regarding passwords and access management.
Phishing attacks used to be the work of hobbyists, but now professional fraudsters are leveraging stolen credentials to compromise multiple accounts.
If you're writing down your passwords on adhesive notes or in a journal, you might need a refresher on password security best practices.
Fraudsters have rendered traditional authentication factors — something you know, something you have and something you are — ineffective.
By reusing passwords across multiple services, users make it easier for cybercriminals to breach all their accounts, not to mention company databases.
Online services are understandably reluctant to add steps to the login process, but a little two-factor authentication can significantly boost security.
Will passwords become things of the past in 2017? Today, organizations tasked with managing too many passwords are at risk of phishing and malware attacks.
Rewarding users for strong password selection can be a good way to eliminate terrible password hygiene throughout an organization.
As countless security compromises have shown, weak passwords are a common root cause for the initial breach of a victim network.
Here's the story of how I almost got hacked — and what you can learn from my close call to ensure the data breach doesn't happen to you.