Enforce Stronger Passwords
NIST’s new guidelines on password strength published in Special Publication 800-63B now recommend that all applications with user accounts “compare the prospective secrets against a list that contains values known to be commonly-used, expected, or compromised.” NIST recommended this extra check due to the modern success rate of brute force and credential stuffing attacks.
Start Screening Today
SpyCloud maintains one of the largest repositories of decrypted compromised credentials in the world. Many of these credentials are found in the the same combo lists that criminals are using today in successful credential stuffing attacks. Using our API (or your own internal API powered by SpyCloud), you can integrate an extra password check directly into your existing security workflows.