The password on its own is not enough to protect an organisation's data, even if you follow best practice says Kevin Timms, adding passwords that are easily entered and remembered are inherently weak and easily compromised.
Companies seem to be slow to realise that their Twitter, Facebook or LinkedIn accounts and passwords require exactly the same protection as any of their high-risk or high-value internal systems says Jackson Shaw.
Scientists use vision algorithms to sidestep security systems and machine-read CAPTCHA security words like a human.
The 23 June 12-hour brute force hack-attack against 9,000 parliamentary email accounts, including minsters and the PM, is now being blamed on Iran.
Netflix scam steals customers' credit card data, and puts businesses at risk where employees re-use passwords.
A society where login without users' volition is allowed would be a society where democracy is dead says Hitoshi Kokumai
Raz Rafaeli suggests perhaps it's time to rethink authentication altogether, and eliminate password-based "something you know," the Achilles' heel of authentication. That leaves "something you have" and "something you are."
CynoSure Prime reports that it has cracked the hashes of virtually all 320 million passwords which security researcher Troy Hunt had put on his 'HaveIBeenPwned' website by early August.
Radha Krishnan provides five steps to avoid the post-holiday password reset storm,and advises deploying user self service options where possible.
The majority of sysadmins - 86 percent - use only the most basic username and password authentication to access and protect their main business account on-site.
Yesterday members of the Scottish Parliament in Holyrood were notified that hackers were trying to crack their email passwords and they were advised to update their passwords.
The US Congress has introduced a bill which aims to prohibit sale of Internet of Things (IoT) devices to the government if they can't be patched or have their password changed.
Following the theft and attempted sale of login details believed to belong to MPs, peers and parliamentary staff, Parliament has confirmed it has seen "unauthorised attempts" to access "less than one percent" of those accounts.
In Case You Missed It: Spammer breached; Yahoo/gmail passwords; Privacy Shield concern; malware shuts hospital; 132 apps in iframe malware.
32-year-old flaws in popular makes of multi-function printers could allow attackers to steal passwords, shut down printers and even cause physical damage.
Researchers from a collection of universities in China and the US have apparently created a method of discovering passwords by looking for the interference that body movement makes in WiFi signals.
About 15 percent of all home routers are unsecure, according to a study recently released by ESET.
As Amazon uncovers login credential list online, does controversial GCHQ password advice still stand?
The unveiling of a new surprise from Amazon may tell us surprising new things about the continuing usefulness of passwords, so does GCHQ's landmark advice still stand?
L0phtCrack is back, 19 years old and updated for the first time in six years, version 7 is apparently 500 times faster
OneLogin has confirmed that a bug has allowed a hacker to view some of its customers' encrypted Secure Notes.
Browser company confirms sync servers breached, exposing passwords of millions of users
Two security vulnerabilities have been found and fixed in password manager LastPass. One by prolific security-vulnerability finder Tavis Ormandy, and the other by Mathias Karlsson of Detectify Labs.
Unfortunately, the GoToMYPC service has been targeted by a 'very sophisticated password attack', says GoToMYPC
TalkTalk confirms that firm does not use TeamViewer, while TeamViewer confirms position of innocence -- problem still exists, move your mouse if you're in a panic.
It seems that the Facebook founder has committed one of the cardinal sins of cyber-security and used the same password for different accounts, resulting in a public shaming.
5 May 2016 is World Password Day.