This site uses cookies. By continuing to browse this site you are agreeing to our use of cookies. Find out more.X

Password Security

Security vulnerabilities found on password managers

Security vulnerabilities found on password managers

By

The wide spectrum of discovered vulnerabilities makes a single solution unlikely - UC Berkley report

Poor admin passwords allow global botnet attack

Poor admin passwords allow global botnet attack

By

BrutPos or @-Brt attacks have infiltrated POS systems with botnets largely thanks to weak admin passwords.

Light bulb illuminates WiFi weakness: IOT security needs to improve

Light bulb illuminates WiFi weakness: IOT security needs to improve

By

Smart light bulb hacked to reveal WiFi password, research project highlights need for development of Internet of Things security.

Domino's won't pay ransom on 600,000 record hack

Domino's won't pay ransom on 600,000 record hack

By

Details of 600,000 French and Belgian customers to be released tonight if ransom not paid today say hackers.

eBay reputation tarnished by breach response

eBay reputation tarnished by breach response

By

eBay has been criticised for a lack of concise communication and poor security advice just 24 hours after the ecommerce giant disclosed that it had suffered a massive data breach.

eBay reacts to breach

eBay reacts to breach

By

Users told to change passwords following database hack at eBay

Thousands affected as phishers steal Google passwords

Thousands affected as phishers steal Google passwords

By

Hackers are stealing Google account passwords by using "enhanced" phishing attacks, according to security researchers.

Confusion reigns after Bitly data breach

Confusion reigns after Bitly data breach

By

URL link shortening service Bitly has asked its users to change passwords and their API key and OAuth token after revealing that some user accounts have been compromised. But precise details on the attack have not been made public.

If you want my data, reward me

If you want my data, reward me

We currently provide our personal details free to data-gathering giants like Facebook and Google, but that won't always be the case, writes Daniel de Bruin.

iOS 7.1 flaw lets hacker access contacts book

iOS 7.1 flaw lets hacker access contacts book

By

A security researcher was able to access an iPhone's contact book via Siri, even though the screen was locked and password-protected.

Winning strategies in cyber warfare

Winning strategies in cyber warfare

The adversary has enormous capabilities in the cyber world, but it too is not without its vulnerabilities, and these must be exploited says Calum MacLeod.

Insider data thieves get away "scot free"

Insider data thieves get away "scot free"

By

Controls on access to data by both staff and ex-staff are lax, and even when caught, insiders stealing data get away 'scot-free' says new survey.

Getting to the heart of the problem

Getting to the heart of the problem

As the Heartbleed bug demonstrates, passwords - especially the way they are commonly used across sites - are inherently vulnerable suggests Chris Russell

Authentication

Authentication

By

There are better paths to authentication than passwords, primarily using multifactor and biometric tools, says Peter Stephenson.

FireEye finds flaws in Amazon's password security

By

The weak password policy operated by Amazon, the world's largest retailer, has been exposed after a test hack by FireEye cracked its systems.

Google buys sound authentication start-up

Google buys sound authentication start-up

By

Google has acquired SlickLogin - an Israeli start-up which has developed technology that allows websites to verify identities by using high-frequency sound waves.

Hackers steal customer records from Kickstarter

Hackers steal customer records from Kickstarter

By

Online crowd-funding website Kickstarter was hacked last week, with hackers getting access to customer data.

2,000 Tesco customers hacked because they re-used passwords

2,000 Tesco customers hacked because they re-used passwords

By

The danger of people relying on one single password online has been highlighted after more than 2,000 Tesco Clubcard customers had their account details stolen because they had used the same name-and-password combination before.

CNN social media accounts hacked by Syrian Electronic Army

CNN social media accounts hacked by Syrian Electronic Army

By

The Syrian Electronic Army has struck again, this time infiltrating CNN's social media accounts and online blogs.

Pass the hash - again

Pass the hash - again

2014 could be set to become the year of PTH suggests Calum MacLeod, VP of EMEA at Lieberman Software Corporation

Five threats to watch out for in 2014

Five threats to watch out for in 2014

By

Leading pen tester reveals his main security concerns for the next 12 months

PRISM fiasco highlights the dangers of password sharing

PRISM fiasco highlights the dangers of password sharing

Snowden has highlighted the need for staff training to ensure password sharing is prevented explains Francois Amigorena, CEO of IS Decisions

Spotted: New keylogging malware steals Tumblr log-in credentials

Spotted: New keylogging malware steals Tumblr log-in credentials

By

A new piece of malware is targeting regular users of Yahoo-owned microblogging website Tumblr

CERT Polska warns on malware-based DDoS infections

Polish agency warns about corporate servers being targeted

Guilty plea in RuneScape hack and virtual items sale

Guilty plea in RuneScape hack and virtual items sale

By

A 21-year-old UK man was charged with two counts of unauthorised computer access after pleading guilty to hacking RuneScape gaming accounts

2m Facebook, Google and Twitter logins stolen

Security experts claim that more than two million Facebook, Google, Twitter and Yahoo user login details have been posted online.

More arrests in Barclays KVM scam

More arrests in Barclays KVM scam

By

A further three men have been arrested by officers from the Metropolitan Police Cyber Crime Unit and charged over the £1.3million KVM (keyboard video mouse) cyber theft at the Barclays Finchley Road, London, branch in April.

Data loss seen as inevitable, as employees fail to follow IT rules

By

Almost three-quarters of IT security professionals believe their organisations will suffer a data breach in next six months.

Twitter overshoots password reset need

By

Twitter mistakenly reset too many passwords on Thursday in response to a security incident, the company has said.

Sign up to our newsletters