Financial Service Providers
Banks, credit unions, and other investment firms need to protect against password attacks
and comply with regulatory requirements
Power a better financial environment with protection from cybersecurity threats
Employees and clients keep selecting the same exposed passwords. This vulnerability opens the door to bad actors’ password spraying, credential stuffing, and cracking of hashed passwords. The FTC and SEC now cite compromised credentials in financial service firms’ failure to establish adequate security. It is time to detect and eliminate common, compromised, and easy-to-guess passwords.
It is not enough to write a policy requiring enhanced security measures if those requirements are not implemented or are only partially implemented, especially in the face of known attacks.