password

(get it in RSS or Atom)

WordPress blogs and more under global attack - check your passwords now!

If you have a web service that supports remote users, you will know that malevolent login attempts are an everyday occurrence.

But hosting providers worldwide are reporting an onslaught at well above average levels...

When is a password not a password? When Excel sees "VelvetSweatshop" [VIDEO]

When is a password not a password? When Excel sees VelvetSweatshop

Malware researcher Paul Baccas reveals how an Excel spreadsheet using the password "VelvetSweatshop" could be designed to put your computer at risk.

Anatomy of an exploit - Linksys router remote password change hole

li-placard-250

A security researcher from California has published a how-to guide detailing a number of exploits against various Linksys routers.

Paul Ducklin looks at the ominous sounding "EA2700 Password Change Insufficient Authentication and CSRF Vulnerability"...

Movie site Vudu resets passwords after burglar nabs hard drives

Video site Vudu resets passwords after burglar nabs hard drives

Burglars broke into offices at video service Vudu late last month and stole hard drives containing customers' personal data, the company told customers in an email sent on Tuesday.

WordPress.com boosts security for bloggers with two-factor authentication

With WordPress.com powering more than 60 million websites worldwide, anything to improve the safety and security of its users is to be welcomed.

Paul Ducklin tries out the new WordPress 2FA service on his Naked Security account...

Scribd, "world's largest online library," admits to network intrusion, password breach

scribd-250

San Francisco-based document sharing site Scribd has admitted to a network intrusion.

Details are scant, but fortunately a notification published by the company suggests that no more than 1% of users are at risk...

"Rude password - login denied": the AT&T April Fool that wasn't

rude-password-250

Why, and more importantly, *how*, would you go about weeding out rude passwords?

Surely an April Fool?

Paul Ducklin takes a look...

Apple introduces two-factor verification for Apple IDs

apple-id-icons-250

After celebrity Web 2.0 journalist Mat Honan had all his iDevices remote-wiped by a cybercrook last year, Apple's login security has been under scrutiny.

Good news! Apple has finally bitten the bullet and started offering two-factor verification for Apple ID users...

Colin Powell's Facebook account has been hacked

Colin Powell's Facebook account is hacked

Former US Secretary of State Colin Powell is the latest public figure to have fallen victim to hackers, with a series of out-of-character messages posted to his Facebook page.

Can multiple moving cursors really hide your password from spyware and peepers? [VIDEO]

Can multiple moving cursors really hide your password from spyware and peepers? [VIDEO]

Japanese boffins think they might have found an imaginative way to stop malware stealing your passwords as you enter them online.

But will it really work?

Evernote shoots itself in foot over "never click on 'reset password' requests" advice

Evernote shoots itself in foot over "never click on 'reset password' requests" advice

Have you taken a close look at the email that Evernote has sent out, with the subject line "Evernote Security Notice: Service-wide Password Reset"?

It looks like the hacked company has made a blunder.

Evernote hacked - almost 50 million passwords reset after security breach

Evernote hacked - almost 50 million passwords reset after security breach

Evernote, the online note-taking service, has says that it has suffered a serious security breach which saw hackers steal usernames, associated email addresses and encrypted passwords.

Google says it is winning the war against Gmail account hijackers

Gmail

Account takeovers are down a mammoth 99.7% compared with what they were at the height of the spear-phishing plague of 2011, the company (rightfully) brags.

Do not relax: such success doesn't let us users off the hook when it comes to account security beef-up.

Jeremy Clarkson falls foul of bodyfat spammers on Twitter, vows to kill hackers

Jeremy Clarkson falls foul of bodyfat spammers on Twitter, vows to kill hackers

The controversial presenter of BBC's "Top Gear" programme, has had his Twitter account compromised by spammers... and he wants his revenge.

Jawbone accounts compromised by hackers - personal info accessed, passwords disabled

Jawbone accounts compromised by hackers - personal info accessed, passwords disabled

Jawbone, makers of Bluetooth headsets, fitness bracelets, and neat Jambox portable speakers, has warned that hackers managed to break into its systems, and accessed the names, email addresses and encrypted passwords of users.

Hacked TV channels broadcast zombie apocalypse emergency alert [VIDEO]

Hacked TV channels broadcast zombie apocalypse emergency alert [VIDEO]

Hackers interrupt TV channels to broadcast an emergency alert, warning that the bodies of the dead have risen from their graves, and attacking the public.

A good reminder to not use default passwords? Watch the video to see what happened.

Sony fined £250,000 after hackers gained access to millions of gamers' details

Sony offers games, subscriptions and virtual cash as part of $15m PSN breach settlement

"There’s no disguising that this is a business that should have known better," says ICO director.

How many headlines do there have to be before companies take data security more seriously?

Boutique babycare website hack - not just the Big Guys at risk

Even if you run a tiny website and don't have much to hide, you (and your customers) are nevertheless at risk from criminals.

For example, @JokerCracker, who openly gives his reason for hacking as, "It's just a personal challenge".

Hard-coded password found in Samsung printers, security fix planned

Samsung printers come with hard-coded password

Companies using Samsung and Dell-branded printers are being warned that a hard coded administrative account could allow remote attackers to take control of their device, according to an alert from the US Computer Emergency Readiness Team (CERT).

Prince William photos accidentally reveal RAF password

Prince William photos accidentally reveal RAF password

Prince William gets photographed doing his day job - unfortunately, someone didn't spot the password pinned to the wall behind him..