Skip to main content

Search

Items tagged with: password


 

‘eyeDisk’ USB drive secured with iris recognition reveals password in plain text


HN Discussion: https://news.ycombinator.com/item?id=19891049
Posted by rbanffy (karma: 79526)
Post stats: Points: 148 - Comments: 19 - 2019-05-12T10:04:47Z

#HackerNews #drive #eyedisk #iris #password #plain #recognition #reveals #secured #text #usb #with
HackerNewsBot debug: Calculated post rank: 105 - Loop: 205 - Rank min: 100 - Author rank: 26
eyeDisk. Hacking the unhackable. Again


 

Keepass.com spreading malware acting as the official password manager site


HN Discussion: https://news.ycombinator.com/item?id=19867971
Posted by svacko (karma: 191)
Post stats: Points: 196 - Comments: 49 - 2019-05-09T13:17:26Z

#HackerNews #acting #keepasscom #malware #manager #official #password #site #spreading #the
HackerNewsBot debug: Calculated post rank: 147 - Loop: 306 - Rank min: 100 - Author rank: 112


 

Keepass.com spreading malware acting as the official password manager site


HN Discussion: https://news.ycombinator.com/item?id=19867971
Posted by svacko (karma: 191)
Post stats: Points: 196 - Comments: 49 - 2019-05-09T13:17:26Z

#HackerNews #acting #keepasscom #malware #manager #official #password #site #spreading #the
HackerNewsBot debug: Calculated post rank: 147 - Loop: 306 - Rank min: 100 - Author rank: 112


 

CVE-2019-5021: Official Alpine Linux Docker images have NULL for root password


HN Discussion: https://news.ycombinator.com/item?id=19861725
Posted by alpb (karma: 4573)
Post stats: Points: 132 - Comments: 64 - 2019-05-08T18:45:29Z

#HackerNews #alpine #cve-2019-5021 #docker #for #have #images #linux #null #official #password #root
HackerNewsBot debug: Calculated post rank: 109 - Loop: 74 - Rank min: 100 - Author rank: 45


 

This Week in Security: Facebook Hacked your Email, Cyber on the Power Grid, and a Nasty Zero-day


#carhacks #computerhacks #hackadaycolumns #news #securityhacks #breach #computersecurity #hack #password #security #thisweekincomputersecurity #hackaday
posted by pod_feeder_v2
This Week in Security: Facebook Hacked your Email, Cyber on the Power Grid, and a Nasty Zero-day


 

More IoT security problems

The software on some cars can be used to turn off the engines of vehicles moving at 12 miles per hour or less.
#hacker #GPS #tracking #ProTrack #iTrack #Android apps #security #data #password #IOT


 

Raspberry Pi Becomes The Encrypted Password Keeper You Need


#raspberrypi #securityhacks #password #passwordkeeper #security #hackaday
posted by pod_feeder_v2
Raspberry Pi Becomes The Encrypted Password Keeper You Need


 
Bild/Foto
We are pleased to announce qTox & KeePassXC added by default to our Whonix 15 Testing (Buster based) release.

#toxchat #qtox #keepassxc #chat #password #security


 

#Matrix: We have discovered and addressed a #security breach.


source: https://matrix.org/blog/2019/04/11/security-incident/

TL;DR: An attacker gained access to the servers hosting Matrix.org. The intruder had access to the production databases, potentially giving them access to unencrypted message data, password hashes and access tokens. As a precaution, if you're a matrix.org user you should change your #password now.


#hack #software #problem #warning #messenger


 

#Matrix: We have discovered and addressed a #security breach.


source: https://matrix.org/blog/2019/04/11/security-incident/

TL;DR: An attacker gained access to the servers hosting Matrix.org. The intruder had access to the production databases, potentially giving them access to unencrypted message data, password hashes and access tokens. As a precaution, if you're a matrix.org user you should change your #password now.


#hack #software #problem #warning #messenger


 
If You’re Still Not #Using a #Password #Manager and #VPN #App, You’re #Officially Out of #Excuses
Bild/Foto
Major cyber attacks and data breaches are occurring at an alarming rate. In 2018 alone over 1.3 billion records were compromised in high-profile hacking incidents involving Twitter, Marriott, Exactis, and MyFitnessPal. So it’s no wonder 90 percent of consumers say they are “very concerned” about internet privacy. Unfortunately, all of this supposed concern about violations of online privacy has not resulted in consumers taking simple steps to protect themselves online, such as using a password manager and VPN app to safeguard their information, or using a credit monitoring service to spot fraudulent activity.
https://futurism.com/password-manager-vpn-app-combined-protection-dashlane/


 
If You’re Still Not #Using a #Password #Manager and #VPN #App, You’re #Officially Out of #Excuses
Bild/Foto
Major cyber attacks and data breaches are occurring at an alarming rate. In 2018 alone over 1.3 billion records were compromised in high-profile hacking incidents involving Twitter, Marriott, Exactis, and MyFitnessPal. So it’s no wonder 90 percent of consumers say they are “very concerned” about internet privacy. Unfortunately, all of this supposed concern about violations of online privacy has not resulted in consumers taking simple steps to protect themselves online, such as using a password manager and VPN app to safeguard their information, or using a credit monitoring service to spot fraudulent activity.
https://futurism.com/password-manager-vpn-app-combined-protection-dashlane/


 
#cybersecurity #computer #security

A tool to verify if your #password was leaked -- without leaking it!

YouTube: Have You Been Pwned? - Computerphile (Computerphile)


 

The password “ji32k7au4a83” has been seen over a hundred times


“Fun thing I learned today regarding secure passwords: the password "ji32k7au4a83" looks like it'd be decently secure, right? But if you check e.g. HIBP, it's been seen over a hundred times.…
Article word count: 745

HN Discussio
... show more


 

The password “ji32k7au4a83” has been seen over a hundred times


“Fun thing I learned today regarding secure passwords: the password "ji32k7au4a83" looks like it'd be decently secure, right? But if you check e.g. HIBP, it's been seen over a hundred times.…
Article word count: 745

HN Discussion: https://news.ycombinator.com/item?id=19297401
Posted by DoreenMichele (karma: 15732)
Post stats: Points: 166 - Comments: 67 - 2019-03-03T22:41:40Z

#HackerNews #been #has #hundred #... show more


 
Bild/Foto

Password Managers: Under the Hood of Secrets Management

Abstract:


Password managers allow the storage and retrieval of sensitive information from an encrypted database. Users rely on them to provide better security guarantees against trivial exfiltration than alternative ways of storing passwords, such as an unsecured flat text file. In this paper we propose security guarantees password managers should offer and examine the underlying workings of five popular password managers targeting the Windows 10 platform: 1Password 7, 1Password 4, Dashlane, KeePass, and LastPass. We anticipated that password managers would employ basic security best practices, such as scrubbing secrets from memory when they are not in use and sanitization of memory once a password manager was logged out and placed into a locked state. However, we found that in all password managers we examined, trivial secrets extraction was po
... show more


 
- #7-zip #broken #password #random #number #generator #rant


So I wanted to encrypt some files. Thought about using 7z+password. Stackexchange folks said "Didn't review it but it should be fine. You can browse the code yourself". So I did. After a few mins I noticed they use 8byte "random" IV. Yes, half of IV is zeroes. But it gets worse.
https://threadreaderapp.com/thread/1087848040583626753.html


 
- #7-zip #broken #password #random #number #generator #rant
Bild/Foto
So I wanted to encrypt some files. Thought about using 7z+password. Stackexchange folks said "Didn't review it but it should be fine. You can browse the code yourself". So I did. After a few mins I noticed they use 8byte "random" IV. Yes, half of IV is zeroes. But it gets worse.
https://threadreaderapp.com/thread/1087848040583626753.html


 
Let's start with the raw numbers because that's the headline, then I'll drill down into where it's from and what it's composed of. Collection #1 is a set of email addresses and passwords totalling 2,692,818,238 rows. It's made up of many different individual data breaches from literally thousands of different sources. (And yes, fellow techies, that's a sizeable amount more than a 32-bit integer can hold.)
source: https://www.troyhunt.com/the-773-million-record-collection-1-data-reach/

#password #security #crime #news #hack #bigdata #email


 
Let's start with the raw numbers because that's the headline, then I'll drill down into where it's from and what it's composed of. Collection #1 is a set of email addresses and passwords totalling 2,692,818,238 rows. It's made up of many different individual data breaches from literally thousands of different sources. (And yes, fellow techies, that's a sizeable amount more than a 32-bit integer can hold.)
source: https://www.troyhunt.com/the-773-million-record-collection-1-data-reach/

#password #security #crime #news #hack #bigdata #email


 

Sichere Passwörter


Master Password



#it-security #it-sicherheit #Passwort #password


 
... show more


 
Bild/Foto

Schneier on Security (Friday Squid Blogging):


Warning / Happening: Tutanota is possibly compromised!


[?!]


https://www.schneier.com/blog/archives/2018/11/friday_squid_bl_653.html#c6785651Martin Fruehauf • December 1, 2018 9:14 AM
An insider from the German Bundesnachrichtendienst (BND / Vopo) / Secret Service just has released a message stating that Tutanota was compromised.

The message as reported by the BND insider just has been picked up by the British Guardian online edition (30th Nov. 2018, 7:30pm GMT).

Here the message:

Tutanota recently released a new recovery code feature that allows a user to recover their account if they forget their password. This recovery code adds a second method to decrypt your private key and thus your emails. This feature wa
... show more


 
RT @NyxHysteria
Pour vous simplifiez la vie, des logiciels existent, utilisez les ! @KeePass , @1Password , @dashlane et d'autres. @nextinpact vous à même fait un article pour vous aider à choisir le votre : https://www.nextinpact.com/news/101627-mots-passe-on-vous-aide-a-choisir-gestionnaire-quil-vous-faut.htm?skipua=1 #InfoSec #password


 
Bild/FotoMatt Osbun wrote the following post Fri, 12 Oct 2018 16:21:22 +0200

Compelled Password burden of proof

Massachusetts Supreme Judicial Court is tackling an important issue. A little background: Generally government law enforcement can't compel a password or decryption unless it's a foregone conclusion that they're going to find what they're looking for. The problem that the court is facing is what is the burden of proof needed in order to consider a result a "foregone conclusion"? Generally, they're not allowed fishing expeditions in other people's laptops and phone, due to the 5th Amendment against self-incrimination. I've... show more

This website uses cookies to recognize revisiting and logged in users. You accept the usage of these cookies by continue browsing this website.