A senior malware analyst has slammed the availability of a `password recovery' utility from Freehostia, noting that the software actually uses network admin utilities to take credentials from the users' PC.
A new study from Cyber Streetwise reveals that Britons are using more passwords than a year ago, but warns that most of these are not complex and thus easier to crack.
Passwords have numerous failings, including their ability to be shared or stolen, meaning that they are not a secure way to authenticate identity, and other options must now be adopted says Dana Epp
There are security vulnerabilities when using passwords, but Tyler Moffitt says that there are steps that you can and should take to make sure your data less easy to access.
After two years of quietly lobbying mobile phone manufacturers such as Apple and Samsung, the Metropolitan Police have gone public with its request for all mobile phone vendors to implement PIN protection as a default setting on a handset.
Security admins need to be more creative when it comes to developing security systems, says Adrian Davis of ISC(2).
The wide spectrum of discovered vulnerabilities makes a single solution unlikely - UC Berkley report
BrutPos or @-Brt attacks have infiltrated POS systems with botnets largely thanks to weak admin passwords.
Smart light bulb hacked to reveal WiFi password, research project highlights need for development of Internet of Things security.
Details of 600,000 French and Belgian customers to be released tonight if ransom not paid today say hackers.
eBay has been criticised for a lack of concise communication and poor security advice just 24 hours after the ecommerce giant disclosed that it had suffered a massive data breach.
Users told to change passwords following database hack at eBay
Hackers are stealing Google account passwords by using "enhanced" phishing attacks, according to security researchers.
URL link shortening service Bitly has asked its users to change passwords and their API key and OAuth token after revealing that some user accounts have been compromised. But precise details on the attack have not been made public.
We currently provide our personal details free to data-gathering giants like Facebook and Google, but that won't always be the case, writes Daniel de Bruin.
A security researcher was able to access an iPhone's contact book via Siri, even though the screen was locked and password-protected.
The adversary has enormous capabilities in the cyber world, but it too is not without its vulnerabilities, and these must be exploited says Calum MacLeod.
Controls on access to data by both staff and ex-staff are lax, and even when caught, insiders stealing data get away 'scot-free' says new survey.
As the Heartbleed bug demonstrates, passwords - especially the way they are commonly used across sites - are inherently vulnerable suggests Chris Russell
There are better paths to authentication than passwords, primarily using multifactor and biometric tools, says Peter Stephenson.
The weak password policy operated by Amazon, the world's largest retailer, has been exposed after a test hack by FireEye cracked its systems.
Google has acquired SlickLogin - an Israeli start-up which has developed technology that allows websites to verify identities by using high-frequency sound waves.
Online crowd-funding website Kickstarter was hacked last week, with hackers getting access to customer data.
The danger of people relying on one single password online has been highlighted after more than 2,000 Tesco Clubcard customers had their account details stolen because they had used the same name-and-password combination before.
The Syrian Electronic Army has struck again, this time infiltrating CNN's social media accounts and online blogs.
2014 could be set to become the year of PTH suggests Calum MacLeod, VP of EMEA at Lieberman Software Corporation
Leading pen tester reveals his main security concerns for the next 12 months
Snowden has highlighted the need for staff training to ensure password sharing is prevented explains Francois Amigorena, CEO of IS Decisions
A new piece of malware is targeting regular users of Yahoo-owned microblogging website Tumblr
Polish agency warns about corporate servers being targeted