The High Cost of Password Expiration Policies

The High Cost of Password Expiration Policies

For many cybersecurity professionals, one of the more surprising ideas to come out of 2019 is the recommendation to drop forced password expiration policies. Forced password expiration policies have been around for many years now and are a widespread element of cybersecurity frameworks within organizations across the world over. However, we’re now being told they may not be necessary. Password …

Digital Identity in 2020

Rethinking Your Digital Identity

Digital identity and digital privacy, while always a hot topic, has been particularly newsworthy lately with Facebook refusing to create a backdoor for law enforcement to gain access to its encrypted messaging products. According to the company, “People’s private messages would be less secure and the real winners would be anyone seeking to take advantage of that weakened security.” Positioning …

7 Cybersecurity Predictions for 2020: https://www.enzoic.com/7-cybersecurity-predictions-for-2020/

7 Cybersecurity Predictions for 2020

2020 will be another interesting year for Cybersecurity, here are our predictions as we kick off a new year. We have entered a new decade with many innovations expected to come to fruition. However, when it comes to cybersecurity, the challenges encountered in the 2010s will remain, with high profile breaches and attacks continuing at a relentless pace. From deep …

HITRUST & Password Policy: https://www.enzoic.com/hitrust-password/

HITRUST & PASSWORDS: 7 Important Password Policies for HITRUST

Our recommended healthcare password policies that complement and support HITRUST. Since its founding in 2007, HITRUST (Health Information Trust Alliance) champions programs that safeguard sensitive information and manage information risk for global organizations across all industries. HITRUST works with privacy, information security, and risk management leaders from the public and private sectors, to develop common risk and compliance management frameworks, …

Cybersecurity Trends to Watch in 2020: https://www.enzoic.com/cybersecurity-trends-2020/

Cybersecurity Trends to Watch in 2020

Cybersecurity and infosec are constantly evolving. Today, organizations are doing everything in their power to harden their defenses, protect their internal networks, and secure data from increasing internal and external threats. The need to be ahead of bad actors causes new cybersecurity trends to emerge every year. The following 2020 cybersecurity trends are important ones to watch. #1: Automation for …

Small Business Cyberattacks

Tips to Protect Your Small Business From Cyberattacks

There’s a dangerous misconception that cyberattacks only affect large organizations. The majority (66%) of business leaders at small to medium-sized businesses (SMBs) don’t believe they will fall victim to a cyberattack, according to Keeper Security’s SMB Cyberthreat Study. Small businesses are prime targets for cyberattacks. According to Hiscox’s 2018 report titled Small Business Cyber Risk, 47% of small businesses had …

worst passwords

The Top 15 Worst Passwords

Passwords. What makes them bad? It is not just the words in a password. It is how they are used, what context they are used in, if they have been exposed online, and other factors. admin (or admin with only a few extra characters like admin1, admin!, adminX) password2020 (and iterations of it, such as 2021Password) password (and iterations of …

Enzoic CEO, Michael Greene was recently in CyberEd.

CyberEd Magazine Session with Enzoic CEO Michael Greene

Enzoic CEO Michael Greene had a recent session with CyberEd. CyberEd.io provides the latest discussions on cybersecurity topics straight from industry leaders for the security practitioner on-the-go. Here is a quick summary of that session. Strong Authentication Hindering the User Experience Numerous options exist for strong authentication, but most involve introducing some form of friction into the user experience. User …

NIST 800-171: Change of Characters in Passwords

NIST 800-171: Change of Characters in Passwords

Cybersecurity risks are a concern for every business, including the Federal government. Until the introduction of NIST 800-171, there was not a consistent approach between government agencies on how data should be handled, safeguarded, and disposed of. This caused a myriad of headaches, including security concerns, when information needed to be shared. After several high profile incidents culminating in the …