Stale (inactive) user accounts in Active Directory can provide attackers (and former employees) with an easy path into a corporate network. Even if the stale user account is not a privileged account, it can be used for privilege escalation... Read More
Specops Software Blog
Specops Password Policy 7.9 – Send Mail from Arbiter, Configure AD Sites for Improved Performance & more
Today we’ve released the latest version of our Active Directory password management solution, Specops Password Policy 7.9. In this post, we’ll take a look at what’s new: New: Optionally configure email to send via the Arbiter to help further... Read More
These Fortune 500 Companies Show Up Most Often in Compromised Password Data
Today, the Specops research team is sharing the results of their latest findings on the use of Fortune 500 company names in compromised passwords. The release of these findings coincides with the latest addition of over 33.9 million compromised... Read More
Keep MFA running during identity service disruptions
Specops Authentication is the MFA platform that secures password resets, and encryption key recoveries via self-service, and/or at the IT service desk. One of the unique features in the Specops Authentication platform is the flexible MFA. This feature keeps... Read More
Specops Password Policy 7.8 – Automate Breached Password Protection Express updates via Cmdlets & more
Today we’ve released the latest version of our Active Directory password management solution, Specops Password Policy 7.8. In this post, we’ll take a look at what’s new: New: Automate Breached Password Protection Express updates via Cmdlets In this release,... Read More
Securing authentication tokens by preventing delegation of admin accounts
The underlying capabilities provided by Kerberos authentication in Active Directory means that access tokens can be delegated to users and computers for various purposes. Attackers can capitalize on the built-in capabilities of Active Directory with impersonation and delegation to... Read More
Specops Authentication Releases: 2022 Highlights
Specops Authentication is our platform that secures self-service key recovery and password resets, changes and account unlocks with multi-factor authentication (MFA), via self-service and/or at the IT service desk. The platform powers products like Specops uReset, Specops Secure Service Desk and Specops Key... Read More
Authentication service outage or compromise? How to keep your business running
User authentication services for MFA impact many systems running in businesses today. But what happens when that authentication service is down or no longer reliable? Planning for the potential pitfalls and challenges in authentication means that your organization won’t... Read More
These Social Media Passwords Highlight the Danger of Password Reuse [new data]
Today, the Specops research team is sharing the results of their latest findings on the use of social media websites in compromised passwords. The release of these findings coincides with the latest addition to the Specops Breached Password Protection... Read More
What are password mask attacks?
Mask attacks are a targeted brute-force technique used by bad actors to crack passwords. Traditional brute-force attacks systematically try every possible combination of letters, numbers, and symbols to guess a target password. With mask attacks, the goal is to... Read More