{"id":681,"date":"2020-05-11T15:02:06","date_gmt":"2020-05-11T15:02:06","guid":{"rendered":"https:\/\/blog.bham.ac.uk\/itsecurity\/?p=681"},"modified":"2020-05-11T15:11:45","modified_gmt":"2020-05-11T15:11:45","slug":"password-spray-attacks","status":"publish","type":"post","link":"https:\/\/blog.bham.ac.uk\/itsecurity\/2020\/05\/11\/password-spray-attacks\/","title":{"rendered":"Password Spray Attacks"},"content":{"rendered":"<p>The NCSC recently issued an <a href=\"https:\/\/www.ncsc.gov.uk\/news\/warning-issued-uk-usa-healthcare-organisations\">advisory on password spray attacks<\/a>.\u00a0 \u00a0The attacks are aimed at \u00a0\u00a0health care organisations involved in the coronavirus response, including research.\u00a0 The University is a potential target.<\/p>\n<p>In password spray attacks, attackers use a few easy to guess passwords and try them against multiple accounts.\u00a0 Attacking in this way does not lock out accounts and the attacks are difficult to detect.<\/p>\n<p>The best defence against these attacks is to use strong, difficult to guess passwords.\u00a0 You should make sure these are long (at least 12 characters, but 16 characters or more is much better).\u00a0 You can easily create a memorable password if you use three unrelated words to form the basis of your password and add numbers and other characters if necessary.\u00a0 There is some useful advice passwords provided by the <a href=\"https:\/\/www.ncsc.gov.uk\/collection\/top-tips-for-staying-secure-online\/use-a-strong-and-separate-password-for-email\">NCSC.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The NCSC recently issued an advisory on password spray attacks.\u00a0 \u00a0The attacks are aimed at \u00a0\u00a0health care organisations involved in the coronavirus response, including research.\u00a0 The University is a potential target. In password spray attacks, attackers use a few easy to guess passwords and try them against multiple accounts.\u00a0 Attacking in this way does not &hellip; <a href=\"https:\/\/blog.bham.ac.uk\/itsecurity\/2020\/05\/11\/password-spray-attacks\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Password Spray Attacks&#8221;<\/span><\/a><\/p>\n","protected":false},"author":84,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-681","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/posts\/681","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/users\/84"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/comments?post=681"}],"version-history":[{"count":3,"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/posts\/681\/revisions"}],"predecessor-version":[{"id":684,"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/posts\/681\/revisions\/684"}],"wp:attachment":[{"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/media?parent=681"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/categories?post=681"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.bham.ac.uk\/itsecurity\/wp-json\/wp\/v2\/tags?post=681"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}