6 Ways Passwords Fail Basic Security Tests

[TechWeb]( Follow Dark Reading: [RSS]( October 29, 2020 LATEST SECURITY NEWS & COMMENTARY [6 Ways Passwords Fail Basic Security Tests]( New data shows humans still struggle with password creation and management. [Breaking the Glass Ceiling: Tough for Women, Tougher for Women of Color]( Security practitioners shed light on obstacles limiting career growth and the steps businesses can take to achieve their promises of a more diverse workforce. [Rethinking Security for the Next Normal -- Under Pressure]( By making a commitment to a unified approach to security, then doing what's necessary to operationalize it, organizations can establish a better security model for the next normal. [Physical Security Has a Lot of Catching Up to Do]( The transformation we need: merging the network operations center with the physical security operations center. [US Government Issues Warning on Kimsuky APT Group]( The joint alert, from CISA, the FBI, and others, describes activities from the North Korean advanced persistent threat group. [Trump Campaign Website Defaced by Unknown Attackers]( Individuals behind the brief Tuesday night incident posted anti-Trump sentiments and appeared to solicit cryptocurrency. [MORE NEWS & COMMENTARY]( HOT TOPICS [Survey Uncovers High Level of Concern Over Firewalls]( More than half of respondents are planning to reduce their network firewall footprint because of what they see as limitations in the technology. [Botnet Infects Hundreds of Thousands of Websites]( KashmirBlack has been targeting popular content management systems, such as WordPress, Joomla, and Drupal, and using Dropbox and GitHub for communication to hide its presence. [Microsoft's Kubernetes Threat Matrix: Here's What's Missing]( With a fuller picture of the Kubernetes threat matrix, security teams can begin to implement mitigation strategies to protect their cluster from threats. [MORE]( EDITORS' CHOICE [Chinese Attackers' Favorite Flaws Prove Global Threats, Research Shows]( Following the NSA's list of 25 security flaws often weaponized by Chinese attackers, researchers evaluated how they're used around the world. [Implementing Proactive Cyber Controls in OT: Myths vs. Reality]( Debunking the myths surrounding the implementation of proactive cyber controls in operational technology. NEW FROM THE EDGE [Tracking Down the Web Trackers]( Third-party Web trackers might be following your website visitors' every step. How can new tools like Blacklight help you stop them in their tracks? [Poll: Always Learning]( Cybersecurity certifications remain as popular as ever. Any interest in expanding your skill set? Tech Resources - [DevOps for the Database]( - [The Expanding Attack Surface: Don't Forget to Protect Your APIs]( - [2020 Microsoft Advanced Threat Protection Report]( - [How San Francisco Secured Its Cloud]( - [Preventing Unwanted Guests in Your Mailboxes]( - [Aryaka Service POP Network Architecture]( - [SANS Report: Measuring and Improving Cyber Defense Using the MITRE ATT&CK Framework]( [ACCESS TECH LIBRARY NOW]( - [Profile of an Online Attack]( In this Dark Reading Virtual Event keynote session, a top pen tester will describe the many methods used to discover and exploit vulnerabilities in an enterprise’s computing environment. - [Edge Computing: An IT Platform for the New Enterprise]( Today, it's clear that the "edge" isn't just about technology but is a core strategy enterprise need to consider. The edge is about processing data where it makes sense and minimizing the burden on the enterprise network. This special report ... [MORE WEBINARS]( FEATURED REPORTS - [2020 Threat Hunting Report]( - [How IT Security Organizations are Attacking the Cybersecurity Problem]( [MORE REPORTS]( CURRENT ISSUE [Special Report: Computing's New Normal]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Micron and Tata Communications Accelerate IoT Deployment With Cloud-Based Virtual SIM]( [Sophos Launches Rapid Response Service to Identify and Neutralize Active Cybersecurity Attacks]( [Theta Lake Raises $12.7 Million In Series A Funding, Led by Lightspeed Venture Partners]( [Red Canary Enters Cloud Workload Protection Space]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2020]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)