Gizmodo: password

Salma Hayek's MobileMe Account Hacked, No Nudie Pics Found (Sorry!)

Dan Nosowitz — Fri, 24 Apr 2009 00:15:00 EDT

One of the irritating mosquito-like posters over at 4chan hacked into Salma Hayek's MobileMe account and found it laughably easy despite MobileMe's "security" questions.

Maybe using the name of her biggest film's title and role to date ("Frida") as the answer to her security question wasn't the smartest choice, but luckily nothing the least bit incriminating has been found so far. And as much fun as it was to scour the internet for the chestiest pic of Salma we could find, we still don't approve of this kind of underhanded hackery.

Since this kind of hacking is so common, we suggest using a total non sequitur as an answer for the custom security question. For example, did you know that my favorite ice cream flavor is Brian Lam? [ElectronicPulp via Technologizer]

The Unforeseen Downside of Using Your Head for Your Password

Mark Wilson — Fri, 13 Mar 2009 13:00:00 EDT

Lenovo's IdeaPad face recognition sounds like a good idea, that is, until someone abruptly minimizes the password field. [Ads of the World via walyou]

Apple Acknowledges Huge iPhone Security Flaw, Calls It "Minor," Announces Fix

Jesus Diaz — Thu, 28 Aug 2008 17:55:00 EDT

Apple has acknowledged the huge iPhone security flaw we tested and reported on two days ago, promising an update for September that will fix the hole that can expose all your private emails, text messages and contacts. But instead of calling a spade a spade and acting as soon as possible, they have decided to minimize the problem:

The minor iPhone security issue, which surfaced this week, is fixed in a software update which will be released in September.

That jewel comes from an Apple spokeswoman, deciding to ignore what ourselves, Wired or the San Francisco Chronicle have classified as a massive security problem. Ms. PR rep: could you please send us your me.com and apple.com passwords so we can demonstrate how easily accessing your mail by clicking a button is not, and will never be, a "minor security issue"?

In the meantime, she points out to the user-driven fix, as if that would help the millions who have iPhones and don't read Gizmodo, Wired, SFC, Reuters, or any of the outlets around the web that echoed the news. Not good enough, I'm afraid. [Reuters]

Dynahand Software Complicates Logins Without Adding Security

kthompson — Tue, 03 Jul 2007 20:15:08 EDT

Almost every website you visit these days lets you create an account of some sort to personalize your experience. Remembering all those username/password combos can get tedious and lead to weak, reused passwords that jeopardize your security. Enter Dynahand, a new form of online authentication that requires you to identify your own handwriting from a group instead of typing in a password. But is it worth it? I don't buy it.

The main purpose of the Dynahand system is to alleviate the burden of multiple passwords on your brain, thus simplifying your life. But in order to maintain security, you'll want to set up the system to test you multiple times before each login, a task that no doubt becomes more monotonous than entering a password. Dynahand uses numeric digits and complex handwriting analysis to create your unique written fingerprint, but the developer admits it probably isn't suited for protecting sensitive information like bank accounts.

So is it much ado about nothing? Do you really need to complicate the process for accessing social sites like MySpace and Facebook? Even feasibility is still a concern, as the current method for collecting user handwriting samples is labor-intensive on the provider of the equation. We'll keep an eye out for this approach taking off in the future, but don't buy a ticket just yet.

[Dynahand Handwritten Passwords via Coolest Gadgets]

How to Crack a Windows Password With a Live CD

Jason Chen — Thu, 01 Feb 2007 20:31:19 EST

Adam over at Lifehacker has a problem. His wife locks up all his porn on a Windows machine that only she knows the password to. That's why Adam came up with a guide to easily crack a Windows password using the Ophcrack Live CD.

It's extremely simple. All you have to do is stick in the CD, pick the account you want to crack, and it'll start churning away. Useful if you have to break into a departed co-worker/wife/child/lover's machine. Or your own machine if you're an idiot and forget your password.

p.s. I made up that story about Adam. He keeps his porn on his own machine. – Jason Chen

Screenshot Tour: How to crack a Windows password with Ophcrack Live CD [Lifehacker]