Enhanced VM Security with Weak Password Detection

We are pleased to announce an enhancement to our virtual machine scanning service: Weak Password Detection adds a layer of security to safeguard your environment against unauthorized access.

• What: Panoptica automatically checks for weak passwords among local users, when taking snapshots of your Linux or Windows virtual machines. If weak passwords are detected – either for privileged or non-privileged accounts – they are reported as risk findings in the Security Posture screen.
• How: Weak Password Detection is already active for any account where CVE and malware scanning is enabled. No additional action is required on your part to benefit from this enhanced protection.
• Where: This update applies to all onboarded accounts with CVE and malware scanning enabled, ensuring consistent security practices across your VMs.
• When: Panoptica scans your VMs for weak passwords daily, as part of the regular periodic scans.

Action Required: If CVE scanning is enabled, you do not need to take any action. The integration is seamless. If you did not enable workload scanning at onboarding, please review the security preferences on the Accounts Page.