Page 52 - Cyber Warnings
P. 52
Even when prompted to update or change them, many times we just move to the next number
or next symbol.
Often we use the names and birthdates of our children, spouses or other family members,
simply updating their age as our new number each year.
All of these password “strategies” are easily breached, by using brute force, simply trying the
next most logical, simple password upgrade.
For example, if I have a password that is “Nancy1,” when it is time to upgrade, if I’m like a large
contingent of the population, I’ll simply go with “Nancy2” or “Nancy1!.”
We have to be concerned about this not just on a personal level, but at a business level. If
someone in my company is using this strategy, it not only puts their accounts at risk, it puts my
business at risk.
So what does this mean? How can you determine if your company is at risk? The best way to
see what is vulnerable, to find out if there is already any information available for sale on the
Dark Web, is to sign up for a Company Threat Analysis.
Comodo’s personalized reports identify if an enterprise’s information has been stolen and dive
into how this data became available to cybercriminals in the first place—for example, via
credentials stolen from direct network access or data breaches from third-party applications.
For each instance, the affected company gets the chance to review a sample of the leaked
credential records and details on the attack processes, to help them understand what went
wrong.
Find out exactly what is out there and what you need to do to take care of the problem.
Visit https://threatanalysis.comodo.com/.
About the Author
Jerald (Trip) Nine oversees Comodo's Threat Intelligence Programs Division.
He is responsible for managing a team that analyzes more than 300,000 crime
servers globally.
He has studied threat analysis on close to 1,000 U.S. enterprises and consults
many Fortune CISOs on their global security posture. Nine also studies
password psychology and reverse engineers the latest credential hacking
methods
52 Cyber Warnings E-Magazine – June 2017 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
