When the usernames and passwords of a big, popular site like eBay are compromised, consequences can spread beyond the original site that was attacked. It’s possible that users of selling platforms Etsy and eBay use the same usernames and passwords on both sites, since security staff at Etsy say that they’ve noticed an uptick in spam and account hijackings since the recent eBay breach. [More]
Do you have so many online accounts that you can barely keep track of where you’re registered, let alone what the passwords are? You’re certainly not alone. Heck, even Fernando Corbató, a retired researcher who is one of the people credited with inventing the computer password 50 years ago, keeps all of his on a few typed sheets of paper. [More]
No matter how frequently consumers are warned about creating predictable passwords, many just aren’t getting the message. The good news from the latest survey of leaked passwords is that the most frequently used password is no longer “password.” The bad news is that the new bad-password champ is equally idiotic. [More]
If you’re a forgetful person or have too many accounts to keep track of, the ability to reset an account password by typing the answers to a few questions about yourself can be a lifesaver. But there’s a dark side, too: it leaves you vulnerable to social engineering. Or having your Amazon password reset by your 94-year-old dad. [More]
Lots of people give an extra set of house keys to close friends or family in case they get locked out. So why not have a similar way of dealing with those times when you’re locked out of your Facebook account? [More]
There’s perhaps nothing more unique than your brain. And because we don’t yet live in a world where villains can hack into your thoughts (key word: yet), the next innovation in passwords could do away with those typed phrases and combinations of letters, numbers and punctuation and replace them with your thoughts.
Michael was having a pretty minor problem with playing television programs in iTunes. Sure, it doesn’t even rank as the a serious first world problem, but he contacted Apple to get it resolved, because that’s what Apple is supposed to do. A senior representative tried to resolve the problem by resetting his iTunes password. Nice idea if it had worked. It didn’t. Now this cord-cutter, who uses his Apple TV to catch up with favorite shows, can’t watch those shows at all. Being locked out of his iTunes account and all.
File this one under “D” for “duh” — the easiest way for someone to break into protected accounts is by guessing your password because many of you just use that same word as part of said password. C’mon, people, get a little creative.
Following the hack of Zappos.com and 6pm.com there are probably quite a few of you looking for a way to create strong passwords and also remember them. Back in December, our safety-conscious friends at Consumer Reports ran a guide to creating strong passwords that are also easy… well, easier, to remember. Here it is.
Stare agog as all the the passwords released in the Sony LulzSec breach race past your eyes in this video.
Back in my day, I had to walk five miles in the snow to make sure my password was safe, but now, what with all the hacking going on, there are easier ways to check if yours has already been compromised. Like a handy dandy website, for one.
One way to make things easy for identity thieves is to choose an unimaginative, easy-to-remember PIN that tons of other people are using.
These are not the best of times to be a gamer who leaves personal information on websites. In addition to the Sony troubles of the past couple months, British game publisher Codemasters has been hacked, leaving emails, addresses and passwords exposed.
If you’ve ever let a friend or family member know your password for subscription services like Netflix or Rhapsody so they can watch a movie or listen to a song, we hope you don’t live in Tennessee, where state legislators have passed a bill making it a crime.
Your bank or credit card company is probably the last entity you would want forcing you to set an incredibly weak Web password. But it’s not just American Express that wants their customers to use really crappy, easily crackable passwords. Charlie recently discovered that Capital One and, to a lesser extent, Bank of America have limits on their customers’ passwords that force them to choose crappy ones.
We’re told that the strongest kinds of passwords are the ones like look like an alien tap-danced on your keyboard, but people have a hard time remembering them without writing them down (on a post-it sitting on the desk). But baekdal has written an intriguing post that shows how when defending against a cracker trying to break your password via brute force through a web form, not only is “this is fun” actually memorable and usable than “J4sF!2,” it’s 10 times harder to crack.
Some old Amazon account appear to have a flaw in their password protection scheme that makes them more vulnerable to a brute force cracking attempt. For affected accounts, if you haven’t changed your password in several years, and it’s over 8 characters long, it looks like all people have to do is enter the first 8 characters correctly and they’re in. Even if after the 8 characters they just type gobbledygook.