Blog | Page 33 of 34

Facebook Password Security Fail

Facebook accidentally stores "hundreds of millions" user passwords in plaintext and around 20,000 Facebook employees had access to view these passwords.

Account Takeover, Credential Screening, Regulation and Compliance

FTC Creates De-Facto Legal Requirements for Credential Stuffing & Account Takeover

The FTC is sending a strong message that businesses will no longer be able to play the victim-card. Instead, they are responsible for protecting their customers from credential stuffing and account takeover.

MFA, Password Tips, Regulation and Compliance

What’s behind PCI’s New MFA Requirements?

Many have implemented MFA ahead of the new PCI requirement. Let's look at PCI's multi-factor implementation guidance that highlights some considerations, particularly around passwords that may otherwise be overlooked.

Cybersecurity

The Outsized Risk From Small Data Breaches

There is a continuous stream of small data breaches that make no headlines but present outsized risks to individuals and organizations.

Cybersecurity, Password Tips

The Magician’s Handkerchief of Password Reuse

Why using the same password can compromise your online security, as Mike shares a personal account of the risks and lessons learned.

Cybersecurity, Data Breaches, Password Tips

Massive Equifax Data Breach Puts Consumers at Risk for Identity Theft and Compromised Accounts

Equifax announced a massive data breach that exposes affected consumers to an increased risk of identity theft and compromised accounts.

Cybersecurity, Password Tips

Can Passwords Really Be Replaced?

We will continue to see passwords for a long time due to the many unique characteristics not found in other authentication methods.

Active Directory, NIST 800-63, Regulation and Compliance

NIST SP 800-63B Final Guidelines: Digital Identity Explained

NIST SP 800-63 final guidelines explained: learn what the standard covers for digital identity and password security.

Cybersecurity, Password Security, Password Tips

Evolving Password-Based Security to Fight Compromised Credentials Attacks

Cybercriminal tactics have evolved, so organizations must evolve their password-based security against compromised credential attacks.

NIST 800-63, Password Tips, Regulation and Compliance

Why NIST Compromised Credential Checking Matters for Security

Learn why NIST requires compromised credential checking and how it improves password security under 800-63B.

Credential Screening, Cybersecurity

LastPass Selects Enzoic for Compromised Credential Screening

PasswordPing’s compromised credential services will help LastPass better inform their users when their online credentials have been exposed.

Cybersecurity, NIST 800-63, Regulation and Compliance

Surprising NIST Password Guideline Changes in 800-63B

The US National Institute of Standards and Technology (NIST) just finalized new draft guidelines, completely reversing previous password security recommendations and upending many of the standards and best practices security professionals use when forming policies for their companies.

Enzoic Blog

Viewing All Blogs