Sign in
  • News
  • Interviews
  • 2021: The Comeback Year
  • Articles
  • Insights
    • Guest Post
    • Use Cases
    • Events
  • Quick Bytes
  • RESOURCES
Sign in
Welcome!Log into your account
Forgot your password?
Privacy Policy
Password recovery
Recover your password
Search
Sunday, May 29, 2022
  • Sign in / Join
Sign in
Welcome! Log into your account
Forgot your password? Get help
Privacy Policy
Password recovery
Recover your password
A password will be e-mailed to you.
ITSECURITYWIRE FAVCON ITSECURITYWIRE FAVCON ITSecurityWire
  • News
  • Interviews
  • 2021: The Comeback Year
  • Articles
  • Insights
    • Guest Post
    • Use Cases
    • Events
  • Quick Bytes
  • RESOURCES
Home News SpyCloud Strengthens Active Directory Guardian with New Password Filter
  • News

SpyCloud Strengthens Active Directory Guardian with New Password Filter

By
ITsec Bureau
-
February 12, 2021
26
SpyCloud Strengthens Active Directory Guardian with New Password Filter

SpyCloud, known for its unique anti-fraud platform powering account takeover prevention and fraud investigations solutions, today announced it has added a new password filter feature to SpyCloud Active Directory Guardian.

With dozens or hundreds of online logins to manage, people often take shortcuts to keep track of their passwords. They use memorable words or names, easy-to-type strings such as “12345678”, or even passwords they’ve used before. Because these habits are so commonly followed, they also are easy for bad actors to figure out. As a result, for the last four years, weak and stolen passwords were consistently the top hacking technique identified in the Verizon Data Breach Investigations Report.

Read More: The Future of OT Security Strategy in Critical Infrastructure

SpyCloud Active Directory Guardian now automatically prevents employees from setting risky passwords using a password filter. When an employee sets a new Active Directory password, the password filter automatically screens the choice for repeated or sequential characters, up to 30,000 entries in a custom dictionary, and billions of exposed passwords found in SpyCloud’s industry-leading database of recovered breach data.

“Despite repeated warnings, people still try to use common and weak passwords,” said Chris Hajdu, Product Manager at SpyCloud. “It’s a very human thing to do simply because we all have so many accounts and passwords to keep track of, but businesses can’t afford to let these habits put their networks at risk.”

Using Active Directory Guardian’s existing capabilities and the new password filter together, enterprises can enforce stronger passwords and reduce their risk of a data breach caused by weak or stolen credentials. The password filter ensures that employee accounts are protected with secure credentials from the moment a new password is created. As new breaches occur over time and compromise more credentials, Active Directory Guardian can make sure employee logins remain secure by detecting and resetting exposed passwords automatically.

Because the password filter runs on the domain controller, the password filter is designed to “fail open” to minimize any potential impact on business operations. In other words, if the password filter fails for any reason, it will allow users to create unchecked passwords rather than locking them out. Running scheduled or manual scans with Active Directory Guardian provides backup for skipped passwords that might otherwise slip through the cracks.

The password filter also reduces the time and resources required to align with NIST password guidelines, particularly the challenging guidance to check for and reset “commonly-used, expected, or compromised” passwords. While some NIST password guidelines can be satisfied using the built-in settings within directory services, identifying new data breaches and checking them against user passwords can be a labor-intensive process. Using the password filter, enterprises can block passwords NIST considers weak or compromised, drawing on SpyCloud’s ever-growing database of exposed passwords.

  • TAGS
  • Active Directory Guardian
  • fraud investigations solutions
  • SpyCloud
  • unique anti-fraud platform powering account
Previous articleIDX Announces Cybersecurity Healthcheck for Organizations in Conjunction with No-Cost Data Breach Services Agreement
Next articleCoalfire Federal Names Stuart Itkin to Lead CMMC Assurance Practice
ITsec Bureau
http://itsecuritywire.com/

RELATED ARTICLESMORE FROM AUTHOR

Val Verde Regional Medical Center Notifies a Data Security Incident

MARTIN UNIVERSITY DISCLOSED A RECENT DATA SECURITY INCIDENT

Optiv Appoints Josh Locker Executive Vice President of Sales

Latest posts

Sectra and Greater Manchester sign deal for one of the largest region-wide imaging initiatives in...

October 5, 2020
360factors and Crowe Announce Joint Collaboration to Deliver Risk_ Controls and Testing Content via Predict360-01

360factors and Crowe Announce Joint Collaboration to Deliver Risk, Controls and Testing Content via Predict360

March 5, 2021
US State Department Giving a Reward of _10 Million to State-Sponsored Hackers

US State Department Giving a Reward of $10 Million to State-Sponsored Hackers

July 16, 2021
Miro Pihkanen Joins OwlGaze as Chief Security Officer and Board Member

Miro Pihkanen Joins OwlGaze as Chief Security Officer and Board Member

November 1, 2021
The Psychology of Phishing

The Psychology of Phishing

September 20, 2021


An invaluable resource for all your IT security initiatives and assets.

Knowledge sharing platform for all IT security needs and plans. Peer to peer conversations that leverage industry experts and leaders for ideas, opinions and business insights.

Media@ITSecurityWire.com
Sales@ITSecurityWire.com

Recent Posts

  • Increased Cyber-Attacks Against MSPs – the Need to Reassess Strategies in 2022
  • The Cyber-Security Playbook for CISOs in the New Normal
  • Five Strategies to Improve Critical Infrastructure Security
  • Val Verde Regional Medical Center Notifies a Data Security Incident
  • MARTIN UNIVERSITY DISCLOSED A RECENT DATA SECURITY INCIDENT

Visit Our Other Publication

Quick Links

  • About Us
  • News
  • Featured Articles
  • Featured Interview
  • Guest Post
  • Privacy Policy
  • Do Not Sell My Information
An Imprint of OnDot ® Media © | All rights reserved | Privacy Policy