Removing human interaction with passwords and automating their selection and frequency of change is certainly a step in the right direction says Richard Walters.
Take human memory out of the equation and passwords remain a viable access option says Emmanuel Schalit.
This week's In Case You Missed It looks at the five most popular articles on SC, including weak passwords exposed in the Sony Pictures breach and the return of the Poodle flaw.
Experts emphasise the need for user education as Sony hackers reveal employee passwords such as "password" and "s0ny123"
Two thirds of users still using the same password across multiple accounts says survey.
MasterCard and Visa have teamed to develop a new security standard, 3DS 2.0, which aims to kill off the password for online transactions.
The growing cyber-threat landscape poses some awkward questions for present and future authentication methods, argues Barry Scott.
A senior malware analyst has slammed the availability of a `password recovery' utility from Freehostia, noting that the software actually uses network admin utilities to take credentials from the users' PC.
A new study from Cyber Streetwise reveals that Britons are using more passwords than a year ago, but warns that most of these are not complex and thus easier to crack.
Passwords have numerous failings, including their ability to be shared or stolen, meaning that they are not a secure way to authenticate identity, and other options must now be adopted says Dana Epp
There are security vulnerabilities when using passwords, but Tyler Moffitt says that there are steps that you can and should take to make sure your data less easy to access.
After two years of quietly lobbying mobile phone manufacturers such as Apple and Samsung, the Metropolitan Police have gone public with its request for all mobile phone vendors to implement PIN protection as a default setting on a handset.
Security admins need to be more creative when it comes to developing security systems, says Adrian Davis of ISC(2).
The wide spectrum of discovered vulnerabilities makes a single solution unlikely - UC Berkley report
BrutPos or @-Brt attacks have infiltrated POS systems with botnets largely thanks to weak admin passwords.
Smart light bulb hacked to reveal WiFi password, research project highlights need for development of Internet of Things security.
Details of 600,000 French and Belgian customers to be released tonight if ransom not paid today say hackers.
eBay has been criticised for a lack of concise communication and poor security advice just 24 hours after the ecommerce giant disclosed that it had suffered a massive data breach.
Users told to change passwords following database hack at eBay
Hackers are stealing Google account passwords by using "enhanced" phishing attacks, according to security researchers.
URL link shortening service Bitly has asked its users to change passwords and their API key and OAuth token after revealing that some user accounts have been compromised. But precise details on the attack have not been made public.
We currently provide our personal details free to data-gathering giants like Facebook and Google, but that won't always be the case, writes Daniel de Bruin.
A security researcher was able to access an iPhone's contact book via Siri, even though the screen was locked and password-protected.
The adversary has enormous capabilities in the cyber world, but it too is not without its vulnerabilities, and these must be exploited says Calum MacLeod.
Controls on access to data by both staff and ex-staff are lax, and even when caught, insiders stealing data get away 'scot-free' says new survey.
SC Webcasts UK
Sign up to our newsletters
SC Magazine UK Articles
- Scone: Bettys Tea Shop loses 122,000 customer records in data breach
- Cyber-security now the top concern for financial services
- Update: GCHQ and police hackers protected by revised Computer Misuse Act
- UK web admin tool infected to access 'gold mine' of data
- 'Burnt-out' security pros hide breaches, demand bigger budgets