• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • Daily Security Bytes
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

Two Ways to Strengthen Cyber Security’s Weakest Link

May 4, 2017 By The Editor

human error

According to recent research by CompTIA, human error accounts for more security breaches than faults in technology. That’s right, even the best security solutions can be undone by human nature. As a tech-driven industry, we sometimes overlook how basic education can combat the human mistakes, oversight and laziness that can cause data breaches. WatchGuard’s Information Security Threat Analyst Marc Laliberte recently wrote an article for Help Net Security explaining two areas where employee training can significantly improve your company’s security posture: password protection and phishing scams. In general, your company needs to find a balance between implementing strong security measures and ensuring that your security policies aren’t so complex or inconvenient that employees bypass them.

Here’s an excerpt from Marc’s article about tactics to help employees use stronger passwords:

One could make the argument that relaxing certain policies and protections could increase password security, if done in the proper context. The U.S. National Institute of Standards and Technology (NIST) recently released a draft of its upcoming digital identity guidelines document. In it, they recommend against password composition rules that require complex, hard-to-remember passwords. Instead, they encourage companies to have employees use longer, more easily remembered passphrases, such TelevisionBrainsHurtEverything or SometimesDoggyOthersChair.

Read Marc’s full article on Help Net Security and learn more about password hacks and best practices in detail here on Secplicity. To learn more about phishing tactics, check out our Daily Security Byte videos for examples of recent phishing attacks.

Share This:

Related

Filed Under: Editorial Articles Tagged With: Hacking, passwords, Phishing

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • USA’s Answer to GDPR
  • Rolling PWN

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • Hacker Summer Camp 2022
  • Private Sector Offensive Actors
  • USA’s Answer to GDPR
  • Rolling PWN
  • Over a Billion Records Leaked in Shanghai National Police Database Hack
View All

Search

Archives

Copyright © 2022 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use