Research, news and updates on threats and cybersecurity
There are many excellent password policy enforcement tools built into Active Directory. But the out-of-the-box AD functionality does not meet all the password standards and new password policy recommendations from NIST and other regulatory organizations. What can organizations do regarding password policy enforcement to increase security and decrease user friction, cost-effectively? The perfect storm of weak passwords More than 21 …
The Industry’s 1st Active Directory Plugin That Helps Organizations Prevent Use of Compromised Passwords According to NIST 800-63b Guidelines. Passwords remain the primary method for protecting employee accounts yet passwords also continue to be a major threat vector to businesses and organizations year-after-year because of use of unsafe credentials. According to Verizon’s 2019 Data Breach Investigations Report, 29% of …
The US National Institute of Standards and Technology (NIST) just finalized new draft guidelines, completely reversing previous password security recommendations and upending many of the standards and best practices security professionals use when forming policies for their companies.
Enzoic was selected to be a “Top 10 Most Valuable Cybersecurity Solution Provider in 2019” because of the innovative cybersecurity and fraud prevention products. Enzoic, formerly PasswordPing, provides low user-friction solutions for strong authentication against compromised credential attacks affecting employees, users, and customers. There are two core solutions: Enzoic for Active Directory Enzoic Account Takeover Protection Enzoic for Active Directory: …
According to LoyaltyOne, a loyalty advisory company, in the US, there are at least 3.8 billion rewards memberships, which equates to about 10 per consumer. Companies create loyalty programs for their customers because it decreases customer attrition while also giving the company more information on each customer for data mining and partnerships. One key challenge for companies is protecting those …
On September 14th, new PSD2 requirements known as Strong Customer Authentication (SCA) were introduced across Europe. These requirements are part of the EU Revised Directive on Payment Services (PSD2) and are intended to increase security for online payments. We are living in an increasingly security-conscious time, and the EU is making meaningful steps with GDPR and PSD2 to address the …
New Jersey’s Data Breach Notification Law Went Into Effect on Sept 1 to Include Account Takeover PII Data As of Sept 1st, 2019, businesses based in New Jersey are now required to notify impacted users of online account information exposed in a data breach. Because of this amended law, New Jersey residents are now better protected from the risk associated …
We all know that data breaches have leaked billions of user credentials (usernames and passwords) on the public internet and dark web. The 2018 Global Password Security Report shows an alarming 50% of people reuse the same passwords across their personal and work accounts. If a cybercriminal obtains legitimate credentials for a personal account, they often can also get into that person’s work account …
Tech Marketing Expert, Kim Jacobson, joins Enzoic as a Director of Marketing. Boulder, CO – Sept 10, 2019 – Enzoic, a leading provider of compromised credential screening solutions, recently announced that Kim Jacobson has joined the company as a Director of Marketing. Kim will be responsible for digital and integrated marketing strategies that continue Enzoic’s high revenue growth trajectory. She will …
With some creative tips to help engage and educate your employees on cybersecurity Each year, incidences of cyberattacks on companies are increasing with the intent to steal sensitive information. There are cybersecurity tools made to protect organizations, but many of these tools focus on external attacks, not internal weaknesses. Many security systems do not focus on the possibility of employees …
We are now over one year on from the General Data Protection Regulation (GDPR) coming into effect. Many businesses still find themselves falling short of compliance and are confused about how the regulation applies to password policy. GDPR came into force on May 25, 2018, thrusting the European Union (EU) into a new era of data and privacy rights. The …
One of the most common threat vectors plaguing financial services institutions is the employee password. How can financial services institutions can better protect employee passwords? Banks, credit unions, investment companies, and other financial services organizations are facing an ever-growing threat from cybercriminals. In 2019, we have seen many high-profile data breaches hit financial organizations, resulting in financial repercussions and damaged …
