Specops Password Auditor (SPA), Specops Password Policy (SPP), and Breached Password Protection (BPP) are often used together to help organizations improve the security and password hygiene of their Active Directory (AD). They often run SPA first – why not,... Read More
News and Research
Categories
What is the California default password law?
Passwords have become a subject of scrutiny, not only in IT security operations, but even extending out into new legislative mandates that have brought passwords into clear focus. California’s Senate Bill 327 (SB-327) was enacted in 2018 and became... Read More
Predictable passwords: which seasons and months are most common in compromised passwords?
Summer reigns supreme among passwords. Today, on international #ChangeYourPasswordDay, Specops Software has released the latest breached password analysis data. “There is an ongoing debate about whether passwords should be changed at regular intervals, since forcing users usually results in... Read More
Hybrid Entra ID (formerly Azure AD) environments and third-party password tools
Can we leverage third-party password tools like Specops Password Policy in hybrid Azure AD environments? The answer is yes, and this blog will explain how. Read More
Active Directory Account Lockout Policy
We’ve touched on the critical importance of password management, and Account Lockout Policy builds on this further. Most failed login attempts are accidental—a user enters their password incorrectly, which happens from time to time. We’re human. However, user accounts... Read More
Introduction to Active Directory banned password lists
Cloud security has become a chief concern for security admins as platforms increase in popularity. These solutions are used daily and host a vast array of resources that teams must be able to securely access from anywhere. These remote... Read More
Securing user passwords: HIPAA vs. HITRUST CSF requirements
A strong password policy keeps user data safe, and meets the requirements crucial to compliance with HIPAA, and HITRUST CSF certification. Read on to find out what these password requirements are, and how you can achieve them with password... Read More
“Biggest leak of its kind” added to Specops Breached Password Protection
STOCKHOLM – Today, Specops Software announced the addition of the latest HaveIBeenPwned (HIBP) password list update, v7, to its Breached Password Protection database. Over 226 million passwords from over 23,000 hacked databases are in HIBP v7, a collection of... Read More
How to change the Active Directory password hash method
Passwords are generally associated with all aspects of securing technology systems. In most environments, passwords are secured using a password hash. Password hashes can impact how vulnerable an organization’s passwords are to an attacker, or in a data leak that... Read More
SSPR registration guide
The benefits of using a self-service password reset (SSPR) solution can be quantified by the number of reduced password-related calls to the IT service desk. For many organizations, this means significant cost savings. Gartner Research estimates that each password... Read More