Graham Cluley Security News is sponsored this week by the folks at Specops. Thanks to the great team there for their support!
With the help of live attack data, Specops Software’s Breached Password Protection can detect over 2 billion known breached passwords in your Active Directory.
Using the Specops database, you can block commonly used and/or compromised passwords, stopping users from choosing passwords susceptible to dictionary attacks.
When a password changes in Active Directory (AD), the password check rejects any passwords found in the database – providing dynamic feedback for end-users. Plus, you can create a custom dictionary list to block words relevant to your organization, including company name, location, services, and relevant acronyms.
Create Compliant Password Policies
Simplify passwords for your users – and place the burden on authentication systems instead of your IT department – with Specops Password Policy tools. It has never been easier to comply with regulatory password recommendations from NIST, CMMC, NCSC, HITRUST, PCI and more. With compliance driven templates, and a reporting tool to ensure you are matching or exceeding standards, Password Policy makes compliance a breeze.
Measuring your policies against industry recommendations can help safeguard your business against common password-related attacks, including brute-force, rainbow table, and dictionary attacks.
Target Password Entropy
Specops Password Policy enforces password length and complexity while blocking common character types at the beginning/end of passwords, as well as consecutively repeated characters. To help users create stronger passwords they can actually remember, the solution also supports passphrases.
You can test out Specops Password Policy tools in your AD for free, just get in touch here.
If you’re interested in sponsoring my site for a week, and reaching an IT-savvy audience that cares about cybersecurity, you can find more information here.