finance

Three Tips to Combat Cyber-threats in the Financial Industry

No firm in the financial industry has been unaffected by digital transformation. Even over the last three years of tech advancements and a global pandemic, there have been seismic shifts in the landscape.  There have been huge advancements in improving efficiency and the quality of customer service, as well as beneficial internal changes like the adoption of cloud technologies.  But, …

AD F

Active Directory is an Active Vulnerability 

Many organizations that use Active Directory (AD) are failing to bolster their security postures  Microsoft AD has been around for almost a quarter century, and while many organizations across industries use it, few have adapted to the demand for greater security postures.  Despite the fact that approximately 90% of the Global Fortune 1000 companies use AD, only about a quarter consider security …

The Biggest Takeaway from the 2022 Verizon DBIR

The annual Verizon Data Breach Investigations Report (DBIR) contains several useful security insights. Reflecting on another year where cybersecurity attacks have frequently starred in news headlines, the 2022 DBIR confirms a lot of what professionals already know: cyber attacks continue to increase in frequency, and organizations of all sizes need to bolster their defensive postures in order to stay safe.  …

username & password

Username & Password Pairs: Why Banning Just Passwords Isn’t Enough

Password blacklists are receiving considerable attention. It’s clear why: weak and compromised passwords are a factor in nearly all hacking-related cybersecurity breaches. Best practices from NIST require organizations to disallow the use of any common and compromised passwords. And several cyber security companies offer password blacklists for this purpose. But authentication requires a username and password combination, so shouldn’t we …