What can we do to better protect ourselves from authentication-based attacks?

25,335 pts.
Tags:
Password
Security
Security management
According to the 2013 Verizon Data Breach Investigations Report, authentication-based attacks continue to plague enterprises as 80% of all attacks collected by Verizon (and other partners) were authentication-based. Who's to blame for these attacks? Well. Tom Bowers, regional security architect at ePlus, says it's users and their passwords. What can we do to better protect ourselves from these attacks? Is it as simple as creating an unique password?
ASKED: April 24, 2013  1:06 PM
UPDATED: May 6, 2013  3:05 PM

Answer Wiki

Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Discuss This Question: 2  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • davidcarr
    Unique is only as good as the one time it is used. using the same password for different online sites does not make it unique any more. If a password and username combo are guessed or compromised, the attackers usually try them on other sites to see if they can get in to those.
    215 pointsBadges:
    report
  • Kevin Beaver
    According to the same Verizon report, 76% of intrusions exploited weak or stolen credentials. Wow! It's 2013 and we're getting hit worse than ever because of simple, silly, and downright stupid problems that lead to password compromise. Here's the problem: human beings are expedient; we want immediate gratification. Many people look to take the path of least resistance every chance they get. This way of thinking and living goes against the very principles of good security...especially when it comes to passwords - at least well thought out passphrases that are so simple to remember yet practically impossible to crack. Unless and until we follow the basic principles of information security that have been around for many decades, we'll continue having these problems. This goes not only for choosing smart passphrases but also many other decisions that can facilitate password-cracking attacks such as: -encrypting our mobile devices -patching -being smart about phishing -anti-malware controls It's all tied together. Here are some of my additional thoughts on passwords, politics and all the nonsense related to the two: http://www.principlelogic.com/passwords.html
    14,990 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following