The Specops research team is publishing new data on how long it takes attackers to brute force guess user passwords with the help of newer hardware. They’ve been specifically looking at passwords protected by the popular MD5 hashing algorithm.... Read More
News and Research
Categories
What IT Teams should do about security concerns around the new Google Authenticator sync feature
Recent news of security concerns around a new feature in Google Authenticator may have IT teams wondering if they need to adjust any reliance on the app for authentication within their networks or apps their organizations use. Launched in... Read More
Long Live the Secure Password! Royal themes discovered within compromised password lists
With King Charles III’s coronation this weekend we’ve analyzed our Breached Password Protection list and discovered a royal connection. Around 350 million people are expected to watch May 6th’s historic coronation in the UK so we’re checking to see... Read More
May The Force stay far far away from your AD #StarWarsDay
It’s back and better than ever! We’re celebrating #StarWarsDay with an updated list of the most used Star Wars themed passwords that top the Specops Breached Password Protection list. The Specops Breached Password Protection database includes the HaveIBeenPwned list,... Read More
Stale user accounts report in Active Directory
Stale (inactive) user accounts in Active Directory can provide attackers (and former employees) with an easy path into a corporate network. Even if the stale user account is not a privileged account, it can be used for privilege escalation... Read More
Specops Password Policy 7.9 – Send Mail from Arbiter, Configure AD Sites for Improved Performance & more
Today we’ve released the latest version of our Active Directory password management solution, Specops Password Policy 7.9. In this post, we’ll take a look at what’s new: New: Optionally configure email to send via the Arbiter to help further... Read More
These Fortune 500 Companies Show Up Most Often in Compromised Password Data
Today, the Specops research team is sharing the results of their latest findings on the use of Fortune 500 company names in compromised passwords. The release of these findings coincides with the latest addition of over 33.9 million compromised... Read More
Specops Password Policy 7.8 – Automate Breached Password Protection Express updates via Cmdlets & more
Today we’ve released the latest version of our Active Directory password management solution, Specops Password Policy 7.8. In this post, we’ll take a look at what’s new: New: Automate Breached Password Protection Express updates via Cmdlets In this release,... Read More
These Social Media Passwords Highlight the Danger of Password Reuse [new data]
Today, the Specops research team is sharing the results of their latest findings on the use of social media websites in compromised passwords. The release of these findings coincides with the latest addition to the Specops Breached Password Protection... Read More
Microsoft adds phishing protection to Windows 11
With the recent release of Windows 11 version 22H2, Microsoft has introduced some new capabilities that are designed to protect users against phishing attacks. These phishing protection features are designed to prevent users from making some of the mistakes... Read More