Good Password Advice from the FBI

February 22, 2020 by Dave

The Portland office of the FBI released some password advice this week that was picked up by ZD Net. They suggest that just using pass phrases of multiple words, even without changes in case, numbers, punctuation, etc., is a good strategy because they’re easier for people to remember. What makes them good passwords is their length. Longer passwords take longer to crack. If you make your pass phrase long enough, it’s a good password even if its a series of words from the dictionary.

Dark Reading Attacks/Breachs

Successful Malware Incidents Rise as Attackers Shift Tactics January 15, 2021

As employees moved to working from home and on mobile devices, attackers followed them and focused on weekend attacks, a security firm says.

Shifting Privacy Landscape, Disruptive Technologies Will Test Businesses January 14, 2021

A new machine learning tool aims to mine privacy policies on behalf of users.

'Chimera' Threat Group Abuses Microsoft & Google Cloud Services January 14, 2021

Researchers detail a new threat group targeting cloud services to achieve goals aligning with Chinese interests.

Businesses Struggle with Cloud Availability as Attackers Take Aim January 14, 2021

Researchers find organizations struggle with availability for cloud applications as government officials warn of cloud-focused cyberattacks.

SolarWinds Attackers May Have Hit Mimecast, Driving New Concerns January 13, 2021

Mimecast no longer uses the SolarWinds Orion network management software that served as an attack vector for thousands of organizations.

More SolarWinds Attack Details Emerge January 12, 2021

A third piece of malware is uncovered, but there are still plenty of unknowns about the epic attacks purportedly out of Russia.

Over-Sharer or Troublemaker? How to Identify Insider-Risk Personas January 12, 2021

It's past time to begin charting insider risk indicators that identify risky behavior and stop it in its tracks.

Intel's New vPro Processors Aim to Help Defend Against Ransomware January 11, 2021

The newest Intel Core vPro mobile platform gives PC hardware a direct role in detecting ransomware attacks.

IoT Vendor Ubiquiti Suffers Data Breach January 11, 2021

Cloud provider hosting "certain" IT systems attacked, company says.

New Tool Sheds Light on AppleScript-Obfuscated Malware January 11, 2021

The AEVT decompiler helped researchers analyze a cryptominer campaign that used AppleScript for obfuscation and will help reverse engineers focused on other Mac OS malware.