The new password guidelines from National Institute of Standards and Technology (NIST) are changing how companies and organizations view password security. The guidelines say: Do allow for longer passwords and choosing original secret questions, Don’t allow users to choose... Read More
Compliance
GDPR compliance and access control – what you should already be doing
With less than a year until the EU General Data Protection Regulation (GDPR) takes effect, all organizations collecting or processing data for individuals within the EU are in the midst of developing their compliance strategy. The new regulation will... Read More
PCI password security checklist
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards that were developed to protect card information during and following a financial transaction. The PCI DSS applies to any merchant or service provider that handles,... Read More
Are PCI compliant passwords good enough?
Wide-scale attacks and hacks on large enterprises may be dominating the news headlines, but small and medium sized businesses are the real targets that are under-reported. According to a Visa analysis, small merchants accounted for more than 80 percent... Read More
SOX password compliance: Not taking it seriously can be costly
Many people may have been surprised by the massive Sony Pictures hack that happened late 2014, but security experts saw it coming a long time ago. In 2005, Sony received an auditing report that they were Sarbanes-Oxley (SOX) incompliant.... Read More
Will you pass a HIPAA audit?
One of the most valuable types of data is online healthcare patient data. Multiple Health Insurance Portability and Accountability Act (HIPAA) breaches in the past showed that fraudsters obtained the records and filed false claims with insurers or bought... Read More