Government agencies have been the target of password spray attacks in which cybercriminals try to pry open accounts that use simple or common passwords that they can then use to get into accounts to steal sensitive information.
DHS warns against using common or easily guessed passwords that can be targeted in password-spray attacks. https://t.co/2txL93iC5m
— Martin Jones (@martinjonesaz) May 7, 2019
Ryan Wilk, VP of Customer Success at NuData Security:
“The human element always plays a key role in cybersecurity protection and passwords are currently the weak link for some government agencies as well as businesses. Government agencies should adopt multilayered security technologies that include passive biometrics and behavioral analytics to detect non-human behavior both at the server and the endpoint. This allows these types of attacks to be quickly identified and mitigated even as bad actors change their strategy. These passive biometrics technologies also help verify that the right user is accessing the environment without requiring additional authentication steps, putting agencies back in control one step ahead of the bad actor.”