Security News
No one would be daft enough to use an Active Directory domain that they didn't own, right? Unfortunately, early versions of Windows that ran Active Directory used corp as the default Active Directory domain. So if you have corp at the end of your Active Directory domain and you look up hr-portal.
"Enzoic for AD is a tool that integrates into Active Directory and enforces additional password rules to prevent users from using compromised credentials," the product's page says. "Unlike products that only check passwords after they are saved, thus requiring subsequent reset by the user, Enzoic validates the password at the time it is being selected. Passwords are then continuously monitored to detect if they become compromised - with automated remediation and alerts. It helps organizations with NIST Password Guideline compliance in Active Directory."
Other organizations are also adopting NIST password guidelines and security protocols because they reduce the risk for most organizations. It easy for administrators to enforce a minimum password complexity with the standard Active Directory functionality but enforcing a character changes is more complex.
STEALTHbits, a leading cybersecurity software company focused on protecting an organization’s sensitive data and the credentials attackers use to steal that data, announced support for Google...
Password change and password reset are terms that are often used interchangeably. However, they are not the same. A user will perform a password change when they remember their existing password,...
Enzoic, a leading provider of compromised credential screening solutions, released the latest version of Enzoic for Active Directory. The product is the only Active Directory plugin to meet all...
Fueled by rampant employee password reuse across work and personal logins, account takeover represents a major risk to the enterprise. According to the 2019 Verizon Breach Report, the use of...
Week in review: Active Directory security, Patch Tuesday forecast, stopping lateral phishing attacks
Here’s an overview of some of last week’s most interesting news, interviews and podcasts: How can security teams effectively monitor OT and ICS networks? Modern industrial operations are complex...
Semperis, a leader in identity-driven cyber resilience, announced that its solution for automated recovery of on-premises Windows Server Active Directory is available in the Microsoft Azure...
Over one third (36%) of IT professionals say their organizations are more vulnerable to security threats now than they were five years ago, according to a new Alsid research. The research, carried...