Canada's banking regulator recently updated its Technology and Cyber Security Incident Reporting requirements for financial institutions to disclose and report cybersecurity incidents. And, for the first time since 2013, it updated its Cyber Security Self-Assessment tool.
National Institute of Standards and Technology (NIST)
IT departments should implement and maintain effective password policies containing robust user identification and password practices. Millions of users worldwide continue to use 123456 and other easily guessed passwords (see here for 100,000 passwords to avoid). In a 2019 Ponemon study, 69% of respondents shared passwords with work colleagues, and 51% reused an average of five passwords across their business or personal accounts—contrary to best practices.