passwords

We just received a warning from Twitter admitting that the company had made a serious security blunder: it had been storing unencrypted copies of passwords. You read that correctly: plaintext passwords, saved to disk. What an announcement to have to make on World Password Day! Any regular...

It's been a big holiday weekend in the United States, with some folks going crazy ape bonkers over the retail bargains available. And today is Cyber Monday when online retailers tend to jump on the bandwagon too. So, it was good to hear that the FBI was going to offer some timely advice for...

How do you think your customers would feel if they visited your business’s website one day and were greeted with an offensive image, malicious code, religious propaganda or a form designed to steal their passwords? My guess is that you wouldn’t be happy, and your customers would be concerned...

Amazon has reset some customers’ passwords and asked them to change them, according to reports. Amazon says that during “routine monitoring,” it stumbled on a set of email and password sets posted online. Amazon isn’t the only online service to check for reused user credentials: both Facebook...

Do you use the same password for multiple sites? Do your eyes glaze over after sites like LinkedIn or Yahoo get massively hacked and, like clockwork, the security wonks come wagging their fingers at you for reusing your passwords? Do you shrug and say “Hey, it’s not my job to keep those sites...

The New York Times has published a story quoting unnamed Yahoo insiders, and it doesn't paint a pretty picture of the firm's security priorities. There's lot to ponder in the article, but one thing that sprung out to me was a section which described how CEO Marissa Mayer clashed with Yahoo CISO...

From time to time, Netflix customers share their passwords with friends and family members, even some that may live in other countries. In those cases, it’s not unusual to see activity on your account from a device in, say the U.K., streaming the latest episode of Game of Thrones. But...

Twitter has responded to reports indicating that tens of millions of usernames and passwords for the social media service are currently available on the dark web, specifying that it is "confident the information was not obtained from a hack of Twitter's servers," and that the purported passwords...

An anonymous hacker is claiming to have leaked a few hundred usernames and passwords for Dropbox accounts. It's unclear where they actually came from (and if they really are Dropbox credentials), but either way: it's time to change your passwords. The leak, which contains hundreds of accounts...

According to the Daily Dot, nearly 5 million usernames and passwords associated with Gmail accounts have been leaked on a Russian Bitcoin forum. Here's what you should know. The list has since been taken down, and there's no evidence that Gmail itself was hacked—just that these passwords have...

You know the drill: Utter expletive, grind teeth, change passwords, get on with life. Mozilla has 'fessed up to accidentally exposing the email addresses for 76,000 members of its Developer Network, along with 4000 encrypted passwords. The breach was caused by a bad script that on July 23 was...

Also known as protection money. Some hackers are learning what it's like when the hunters become the hunted. A new search engine called Indexeus offers an easy way for ne'er-do-wells to look up login credentials from over a hundred hacks, including recent high-profile dumps of Adobe and Yahoo...