The underlying capabilities provided by Kerberos authentication in Active Directory means that access tokens can be delegated to users and computers for various purposes. Attackers can capitalize on the built-in capabilities of Active Directory with impersonation and delegation to... Read More
Blog
Categories
Specops Authentication Releases: 2022 Highlights
Specops Authentication is our platform that secures self-service key recovery and password resets, changes and account unlocks with multi-factor authentication (MFA), via self-service and/or at the IT service desk. The platform powers products like Specops uReset, Specops Secure Service Desk and Specops Key... Read More
Authentication service outage or compromise? How to keep your business running
User authentication services for MFA impact many systems running in businesses today. But what happens when that authentication service is down or no longer reliable? Planning for the potential pitfalls and challenges in authentication means that your organization won’t... Read More
These Social Media Passwords Highlight the Danger of Password Reuse [new data]
Today, the Specops research team is sharing the results of their latest findings on the use of social media websites in compromised passwords. The release of these findings coincides with the latest addition to the Specops Breached Password Protection... Read More
Password mask attacks explained: What are they & how do they work?
Credential-based attacks remain one of the most effective techniques used by cybercriminals to breach enterprise networks. In 2024 alone, 88% of web application attacks involved the use of stolen credentials, according to Verizon’s 2025 Data Breach Investigations Report. Among... Read More
Microsoft adds phishing protection to Windows 11
With the recent release of Windows 11 version 22H2, Microsoft has introduced some new capabilities that are designed to protect users against phishing attacks. These phishing protection features are designed to prevent users from making some of the mistakes... Read More
How to block common password patterns in Active Directory passwords
Between work and personal accounts, the average person may have dozens of passwords to remember. Strong password hygiene indicates a unique password for each account, but when users have so many passwords to remember, they come up with a... Read More
New in Specops Password Policy 7.7 – Improved Password Expiry Emails and More
Today we’ve released the latest update to our Active Directory password management solution, Specops Password Policy 7.7. This release includes improved intervals for password expiration reminder emails, as well as new functionality for sending test emails and selecting specific... Read More
Default account lockout policies in Windows 11
Windows 11 is the newest and generally most secure operating system in the Windows family. In the newest iteration of Windows, there are default account lockout policies that exist to mitigate RDP and other brute force password vectors. Why... Read More
Football-Themed Passwords: Keeping Football on the Pitch and Out of Passwords this World Cup
The Messi versus Ronaldo debate returns—but this time it’s not about who is the best footballer, but about which name has appeared the most within Specops’ Breached Password Protection list, a database of over 4 billion unique compromised passwords.... Read More