Good Password Advice from the FBI

February 22, 2020 by Dave

The Portland office of the FBI released some password advice this week that was picked up by ZD Net. They suggest that just using pass phrases of multiple words, even without changes in case, numbers, punctuation, etc., is a good strategy because they’re easier for people to remember. What makes them good passwords is their length. Longer passwords take longer to crack. If you make your pass phrase long enough, it’s a good password even if its a series of words from the dictionary.

Dark Reading Attacks/Breachs

Digital Distancing with Microsegmentation May 29, 2020

Physical distancing has blunted a virus's impact; the same idea can be applied to computers and networks to minimize breaches, attacks, and infections.

All Links Are Safe ... Right? May 29, 2020

Today is a perfect day for a security breach.

A Rogues' Gallery of MacOS Malware May 28, 2020

MacOS isn't immune from malware. Being prepared means understanding the nature of the worst threats a security team is likely to see attacking Macs in the enterprise.

GitHub Supply Chain Attack Uses Octopus Scanner Malware May 28, 2020

Octopus Scanner is a new malware used to compromise 26 open source projects in a massive GitHub supply chain attack.

Researchers ID Hacktivist Who Defaced Nearly 5,000 Websites May 28, 2020

Opsec mistakes lead a Check Point researcher to an individual in Brazil who was behind a longtime hacking campaign.

Valak Malware Retasked to Steal Data from US, German Firms May 28, 2020

Once considered a loader for other malware, Valak regularly conducts reconnaissance and steals information and credentials, new analysis shows.

NSA Warns Russia's 'Sandworm' Group Is Targeting Email Servers May 28, 2020

The Russian military group has been exploiting a flaw in the Exim mail transfer agent since last August, the NSA reports.

3 SMB Cybersecurity Myths Debunked May 28, 2020

Small and midsize businesses are better at cyber resilience than you might think.

Google, Microsoft Brands Impersonated the Most in Form-Based Attacks May 28, 2020

Attackers are preying on users' inclination to click on familiar-looking websites, but instead trick them into sharing usernames and passwords.

Data Loss Spikes Under COVID-19 Lockdowns May 28, 2020

Two new reports suggest a massive gap between how organizations have prepared their cybersecurity defenses and the reality of their efficacy.