As if you needed yet another reason to loathe your ISP, Comcast has dropped the ball when it comes to properly securing its own wireless products. A pair of security researchers have uncovered a bug on Comcast’s website that allowed unauthorized disclosure of Xfinity customers’ personal data, according to a report…
Passwords are pretty archaic. Unfortunately, despite the best efforts of companies including Google, Apple, Facebook and others, no one has figured out a uniform standard that would make it possible to do away with them entirely. Until, perhaps, now.
Given that password theft from major tech companies like Yahoo has become routine, most large firms now store their users’ passwords in an encrypted format. Keeping a list of users’ passwords in plaintext creates a huge risk—stealing that password database can give a hacker access to millions of accounts. And if a…
Passwords are your way into almost all of your online accounts, from social networks to email platforms, but how do you know whether the ones you’re using are strong enough to stand up to repeated hacking attempts? If you want to know how to do a self-audit on password security, and the best combinations to use to…
If your password winds up in a mega-breach like the ones at Yahoo, Dropbox, or Tumblr, it can be easy for a hacker to take over your account—especially if you reuse the same password across multiple services. But it’s not always easy to tell if your password has been stolen, and companies can sometimes take years to…
Google and researchers at the University of California, Berkeley, teamed up to study how Google accounts become compromised, shedding light on how the company finds new ways to fight back.
Every year, SplashData compiles a list of the most popular passwords based on millions of stolen logins made public in the last year. And each time, we own ourselves. Hard. 2017 is no exception.
A recent survey shows why corporate password policies are doing very little to stop employees from mishandling their passwords. It also finds most employees favor biometric security and that Apple’s new Face ID feature is widely trusted—even though almost no one has actually used it yet.
Time to install those updates! Last week, we warned you that a bug in High Sierra made it possible for an attacker to extract passwords from Apple’s Keychain in plaintext. The bug was discovered and reported by Synack head researcher Patrick Wardle in early September, and now Apple has issued a patch for the issue.
We’ve all been forced to do it: create a password with at least so many characters, so many numbers, so many special characters, and maybe an uppercase letter. Guess what? The guy who invented these standards nearly 15 years ago now admits that they’re basically useless. He is also very sorry.
Although storing passwords in plaintext anywhere online is fundamentally the opposite of security, routine data breaches at some of the world’s biggest companies haven’t dissuaded some users from engaging in this obviously terrible practice.
OneLogin, an identity management software company, announced yesterday that it suffered a data breach. Although the firm hasn’t provided many details, the few that it has released suggest that the breach is extensive.
Despite being the most common way to protect computers and sensitive data, passwords are a terrible security solution. So scientists at Hong Kong Baptist University are teaching computers to read a user’s lips as a far more secure method of biometric security.
Facebook has admitted that it trolls the black market for stolen passwords in an effort to beef up its own security and protect its users who may use the same password across multiple online accounts.
If you’re using a different password for all the sites and apps you’re signed up for (and you really should), there are only so many combinations of letters and numbers you can hold in your head at once. The good news is there are plenty of tools out there to remember your passwords and secure them for you. Here are…
I like a good strong password just as much as anyone else. But CNBC’s stunty idea for a tool that tested the strength of people’s passwords is one of the stupidest things I’ve seen in days—possibly weeks!
A white hat hacker in India says he found a way to hack into any Facebook user’s profile. Don’t freak out though! Like a good white hat, the hacker alerted Facebook to the disastrous loophole. Facebook paid him a $15,000 bug bounty. Seems small.
If you want to not be hacked, the absolute best thing you can do is turn on two-factor authentication for all your accounts. Instagram is way behind the trend here, but it looks like tween’s second-favorite photo network is finally getting with the times.
It’s 2016 and you may have thought we’d all be a little older and wiser than this time last year. But as you read this list of 2015's most popular passwords, you will shake your head, mumble unmentionables and reach the firm conclusion that, no, we are in fact all still complete and utter morons.