Items tagged with Passwords
If you use Microsoft Authenticator or know people who do, here's a good heads-up. Keeping with the plan to discontinue Authenticator's password functionality in a bid to transition to passkeys, the software's autofill functionality will stop working as of today, and saved payment information will be erased. Saved...
Read more...
As tempting as it might be, avoid using 0000 as your four-digit PIN code. Same goes for 1010, 1111, 1122, and 1212, which comprises the top five worst PIN codes, according to a list compiled by security experts. Just like a password, you should avoid using PIN codes that are commonly used. Yes, they can be easier to...
Read more...
Nefarious hackers have figured out many ways to circumvent 2FA restrictions and harvest passwords with sophisticated phishing traps. Many of these bad actors, however, will soon be looking for new ways to attack Microsoft user accounts. Microsoft seems to have delivered on its earlier promise to push users a...
Read more...
We've reported a number of sophisticated cyberattacks where threat actors circumvent 2FA restrictions. In response to the increased vulnerability of passwords, Microsoft has announced a major change in its authentication requirements that will affect over a billion users. This change will see a significant shift from...
Read more...
One of the challenges with our digital era is the burden of remembering a great number of passwords. While some try to memorize and remember their passwords, others have opted for password-managing apps. 1Password, a popular password-managing service, however, has gone beyond simply saving passwords and has recently...
Read more...
As more and more sites and services have required login accounts, users have become overwhelmed with having to juggle so many passwords. This typically leads to users making poor choices, such as reusing passwords or passwords that are too simple and inherently unsecure. The situation has improved slightly with...
Read more...
The most popular passwords are the easiest ones to crack because they're so prevalent, and also because they're incredibly simple. It makes you wonder, who's actually using "123456" to secure access to an account? Surely no one would be that foolish, right? To the contrary (kind of), that string of digits once again...
Read more...
Google has issued an apology after passwords disappeared for millions of Windows users. The company reported a significant number of users were unable to find or save passwords in the password manager for Google Chrome for 17 hours and 51 minutes.
For nearly 18 hours, Chrome users around the world found themselves...
Read more...
While some might say passwords are on the way out, especially with the advent of passkeys that are regarded as a better solution. However, the extinction of the password isn’t a reality yet. Passwords are still around and they're sometimes terribly not secure, especially if you use one of the top 200 worst passwords for any of your accounts.
Read more...
Password managers are not perfect. Recently, LastPass was blamed for millions in stolen neing crypto and KeePass is downplaying password database theft. Bitwarden may ne next to catch some flak. It turns out a penetration test discovered that unlocking a password vault with Windows Hello biometrics could be bypassed...
Read more...
You probably don't need an official list to tell you that "123456" is an incredibly weak password (unless you're a CEO, apparently), or that extending it out to "12345678" or even "123456789" are nearly as anemic when it comes to account security. Nevertheless, the folks at NordPass have published an annual list of...
Read more...
Earlier in the year, Google implemented support for passkeys in its products to help move folks away from traditional passwords. In theory, this should make people more secure and have an easier time signing into their accounts, and as such, Google is making it the default means of signing in across personal Google...
Read more...
Recently, a plugin utilized by over a million WordPress site owners was discovered to have a bug in a prior release that logged passwords in plaintext. While the problem has since been fixed in an update, credentials may still be floating around in logs, so be sure to take a look.
The All-In-One Security (AIOS)...
Read more...
Your password requires at least nine characters, one special character, two numbers, your horoscope, three emoji, and a depiction of the current weather outside. If that seems unhinged, wait until you try The Password Game, a fun but absurd password-creating game taking the internet by storm.
You may have heard of...
Read more...
Gone are the days of having one password for all your accounts or simply writing down every password you have on paper. Now, password managers make everyone more secure and passwords easier to manage, hence the name. Enter Google Password Manager, a password manager built directly into Chrome so you can handle all...
Read more...
There was always a lingering hope that Netflix might abandon its enforcement of disallowing account sharing outside of the household amid delays in the US rollout. But after testing the waters in a few overseas territories, Netflix has officially begun cracking down on password sharing in the US. The first wave of...
Read more...
Kevin Mitnick, a former black hat hooligan-turned-good-guy who spent several years in prison in the 1990s for various computer-related tomfoolery, is showing off a beastly setup outfitted with 30 high-end GeForce graphics cards. We know what you're wondering—can it run Crysis? It certainly has enough firepower to push...
Read more...
The password manager KeePass is currently the subject of a debate concerning whether or not a particular design decision should be considered a security vulnerability. At the center of this debate is KeePass’ support of triggers, one of which exports users’ password databases. Threat actors could potentially leverage...
Read more...
As we approach the end of the year, cybersecurity outfits inevitably round up and share the weakest passwords detected in the wild over the past 12 months. Some of these are obvious—12345678 is a terrible password that keeps showing up—but a new security report highlights some surprising trends that call into question...
Read more...
Back in August of this year, the password manager LastPass suffered a security breach that resulted in the theft of proprietary technical information and portions of the company’s source code. Hackers then used the stolen information to breach LastPass again at the end of November. Shortly after this follow-up breach...
Read more...
The CEO of the password manager LastPass, Karim Toubba, has published a blog post on the company’s website disclosing a recent security breach. According to the blog post, this incident affected both LastPass and its affiliate company GoTo, with a similar blog post appearing on the GoTo website. With the help of the...
Read more...
Three days ago, users of the sports betting service DraftKings began reporting that their accounts had been hacked. In cases in which the hacked accounts contained funds, users reported the hackers attempting to withdraw their funds to newly added bank cards. Yesterday, DraftKings acknowledged these reports publicly...
Read more...
