NIST Has Spoken - Death to Complexity, Long Live the Passphrase! 3 comments Posted by lspitzner Filed under Security Awareness Planning NIST has spoken, and we could not be more excited. For years the security community has inflicted one of the most painful behaviors to date, the dreaded complex password. We have watched many times in horror as security … Continue reading YES!!! On the heels of PW discussions…this just in:
In light of the Equifax breach, and in the interest of developing good security hygiene, this is a terrific guide from SANS: Password Management Guide.
This is from Lance Spitzer at SANS: As most of you have read by now, Equifax was hacked. Equifax is one of four credit rating services, called Credit Bureaus (the other three are Experian, Trans Union and Innovis). This means they harvest (and sell) the financial data and credit ratings of almost every adult citizen in the United States. Yesterday (7 … Continue reading Equifax Info From SANS
We're tracking InfoSec and Compliance news for you...