Security News
Benefit Vantage, developer of the IPification seamless authentication solution, is proud to announce that we will enable global service providers to enhance user authentication and verification when using the Microsoft Azure Active Directory B2C cloud identity platform. Azure Active Directory B2C enables organizations to manage and secure customer, consumer and citizen access to web and mobile applications, enabling service providers to add and customize user identity services for registration and login purposes to their apps.
Enzoic, a leading provider of compromised password security solutions, released the latest version of Enzoic for Active Directory. The automated tool screens and identifies employees that are using compromised or weak passwords, helping organizations reduce insider risks from poor password hygiene.
Microsoft reckons 0.5 per cent of Azure Active Directory accounts as used by Office 365 are compromised every month. "About a half of a per cent of the enterprise accounts on our system will be compromised every month, which is a really high number. If you have an organisation of 10,000 users, 50 will be compromised each month," said Weinert.
Hybrid environments can now join the preview party for FIDO2 support in Azure Active Directory. One way to move on is via a FIDO2 security key; the FIDO alliance has already signed up the likes of Google and Mozilla for browser authentication and back in October 2019 Microsoft unveiled a preview of FIDO2 security support in Azure Active Directory.
No one would be daft enough to use an Active Directory domain that they didn't own, right? Unfortunately, early versions of Windows that ran Active Directory used corp as the default Active Directory domain. So if you have corp at the end of your Active Directory domain and you look up hr-portal.
"Enzoic for AD is a tool that integrates into Active Directory and enforces additional password rules to prevent users from using compromised credentials," the product's page says. "Unlike products that only check passwords after they are saved, thus requiring subsequent reset by the user, Enzoic validates the password at the time it is being selected. Passwords are then continuously monitored to detect if they become compromised - with automated remediation and alerts. It helps organizations with NIST Password Guideline compliance in Active Directory."
Other organizations are also adopting NIST password guidelines and security protocols because they reduce the risk for most organizations. It easy for administrators to enforce a minimum password complexity with the standard Active Directory functionality but enforcing a character changes is more complex.
STEALTHbits, a leading cybersecurity software company focused on protecting an organization’s sensitive data and the credentials attackers use to steal that data, announced support for Google...
Password change and password reset are terms that are often used interchangeably. However, they are not the same. A user will perform a password change when they remember their existing password,...
Enzoic, a leading provider of compromised credential screening solutions, released the latest version of Enzoic for Active Directory. The product is the only Active Directory plugin to meet all...