Several employee accounts appear to have been cracked by an attacker. Which of the following should the
security administrator implement to mitigate password cracking attacks? (Choose two.)

A.
Increase password complexity

B.
Deploy an IDS to capture suspicious logins

C.
Implement password history

D.
Implement monitoring of logins

E.
Implement password expiration

F.
Increase password length

Explanation:
The more difficult a password is the more difficult it is to be cracked by an attacker. By increasing the password
complexity, you make it more difficult.
Passwords that are too short can easily be cracked. The more characters used in a password, combined with
the increased complexity will mitigate password cracking attacks.