Marcus White

Deployment

Security

Technical

Marcus is a Specops cybersecurity specialist based in the UK. He’s been in the B2B technology sector for 8+ years and has worked closely with products in email security, data loss prevention, endpoint security, and identity and access management.

Articles written by Marcus White

Jul

10

Rockyou2024 analysis: Mega password list or just noise?

Back in June 2021, a large data dump called ‘rockyou2021’ was posted on a popular hacking forum. It was named after the popular password list used in brute-force attacks called ‘Rockyou.txt’ – and it was a pretty big story at…
Read More
Jun

25

Average organization saved $65K in 2023 with self-service password resets

Resetting passwords is a time and resource sink for IT helpdesks – Gartner found 40% of all help desk calls to the service desk are related to password expirations, changes, and resets. However, resets are also a part of life…
Read More
Jun

10

NIS2, passwords, and MFA: Everything you need to know

The NIS2 Directive is an important piece of legislation for anyone working in cybersecurity across the European Union. The latest updates to the NIS2 (Network and Information Systems) regulations were published in the Official Journal of the European Union on…
Read More
Apr

22

Why use passphrases over passwords? | Passphrase best practice guide

A passphrase is a password; it’s simply one that’s made up of random whole words (usually, three, or four). So if a passphrase is just a password, why does it matter which one we enforce end users to create? There’s…
Read More
Mar

26

Secured your Active Directory? EASM is your next password security step.

It’s important to lock down the basics first when it comes to cybersecurity. You could purchase a state-of-the-art security system for your house – but it’s still going to be targeted by criminals if you leave the doors and windows…
Read More
Mar

07

Four ways to make end users love password security (or at least tolerate it).

When end users find their organization’s security measures burdensome or frustrating, it can significantly increase the risk of insider threats. Gartner revealed that 69% of employees have disregarded their organization's cybersecurity guidance in the past year. This doesn’t mean they’re…
Read More
Feb

21

How an ex-employee’s leaked credentials led to a U.S. State Government breach

A U.S. State Government organization’s network was recently compromised through a former employee's administrator account. The organization itself is unnamed, but we know that the threat actor successfully authenticated into an internal virtual private network (VPN) access point using an…
Read More
Feb

13

Why security and awareness training won’t fix bad password habits

Organizations know their end users represent a cybersecurity risk. They make mistakes, they’re targeted by hackers, and sometimes they’ll even act maliciously against their employer. Security and awareness training is an attempt to reduce this risk by creating a cybersecurity-conscious…
Read More
Jan

24

Microsoft password spraying hack proves securing every account matters

Microsoft released a statement on Friday 19th January saying their corporate network had been compromised by Russian-state hackers, who were able to exfiltrate emails and attached documents. The software giant said only a ‘very small percentage’ of corporate email accounts…
Read More
Dec

05

Holiday season cyber threats: Is your service desk prepared?

Cybercriminals strategically time their attacks for when cyber defenses are most vulnerable. The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have noticed a significant increase in ransomware attacks against US companies during holidays and weekends. For…
Read More