passwords

(get it in RSS or Atom)

Samsung Galaxy S5 fingerprint reader hacked - it's the iPhone 5s all over again!

samsung_galaxy_s5_fingerprint_scanner-250

The Samsung Galaxy S5 fingerprint scanner can be fooled with wood glue, just like Apple's "Touch ID" sensor in the iPhone 5s.

So why are both Apple and Samsung touting fingerprint scanners as more secure than passwords?

Is Amazon hacking our apps? Or doing us all a security favour?

aws-1-250

A war of words that started out as a fairly stinging criticism of Amazon has mellowed out into praise for the cloud services behemoth.

It seems that Amazon is checking mobile apps for security risks, and heaping advice on developers who have wandered off the straight and narrow...

Twitter screws up, accidentally sends deluge of password-reset messages

Twitter screws up, sends deluge of password-reset messages

Twitter goofed, sending out a deluge of password-reset emails on Monday evening that turned out to have been triggered by a system error. Yes, it's a false alarm, but what the heck - any excuse to nag people about password reuse will do!

Kickstarter breached - change your passwords

Kickstarter Breach

Hackers gained unauthorised access to crowdfunding site kickstarter.com earlier this week. Compromised details include usernames, email addresses, mailing addresses, phone numbers and password hashes. Kickstarter users should change their passwords immediately.

Thousands of Tesco.com user passwords leaked online

2,239 Tesco.com user passwords leaked online

UK retailer Tesco has been forced to suspend 2,239 user accounts after a list of email addresses, passwords and Clubcard voucher balances was posted online.

SSCC 133 - Prize unicorns, Android malware, 2FA, Attack reports and Vote For Us! [PODCAST]

sscc-133-thumb-250

Chet and Duck review the week's news in their informed and entertainingly serious style, discussing the prizes on offer at this year's PWN2OWN competition, talking about a new twist in Android malware, and reviewing the latest attack reports from Yahoo and Target...

Starbucks admits "your security is incredibly important", updates password-spilling app

starlim-250

Starbucks got into and out of privacy trouble in over the past week.

The brouhaha started when a US security researcher publicly reported a rather serious data leakage problem in the Starbucks iOS mobile app...

Jailed terrorist gets extra time for refusing to divulge USB stick password

Jailed terrorist gets extra time for refusing to divulge USB stick password

A British man already in jail for terrorist activity was given another 4 months for refusing to give police the password to a memory stick that they couldn't crack. The convicted terrorist suddenly got his memory back when police said they were launching a new investigation into credit card fraud.

For nearly 20 years, the launch code for US nuclear missiles was 00000000

For nearly 20 years, the launch code for US nuclear missiles was 00000000

All those complicated passwords just slow you down when all you really want to do is blast the smithereens out of something fast.

SSCC 126 - Zero-day, Bitcoins, passwords and randomness [PODCAST]

Turn bad news into good with "what you can do better" advice from Chet and Duck.

Learn from: an XP zero-day, a spate of Bitcoin "bank robberies," the outcome of a European user security survey, and yet another cryptographic blunder, this time from Drupal.

Blizzard Entertainment concludes its data breach investigation - fifteen months later!

bnet-250

15 months ago, we reported on a data breach at online entertainment company Blizzard. We were complimentary back then, not least because the company owned up within three days.

Blizzard's follow-up, however, hasn't been quite as swift or impressive...

Hack of online dating site Cupid Media exposes 42 million plaintext passwords

Hack of online dating site Cupid Media exposes 42 million plaintext passwords

Guess how many times "123456" was used as a password by users. If you answered "close to 2 million times," you win! Now guess which online dating site service has decided to encrypt customer records using salting and hashing in future.

GitHub users with weak passwords - you have been warned!

GitHub, one of the world's biggest online repositories of software source code, is warning users to jolly well shape up when it comes to login security.

Of course, GitHub isn't saying it quite like that (it is being more polite)...but we are!

Adobe, Android and CryptoLocker - 60 Sec Security [VIDEO]

2013-11-09-pet-passwords-250

Which pets make the best/worst passwords?

How many times did Google make the same coding blunder?

Find out this and more in our one-minute wrapup of the week's security lessons!

Lavabit reopens for brief window to let users get at their data

Lavabit logo

The founder of the encrypted email service says he himself, along with all Lavabit users, was stranded by the abrupt closure: “I'm in the same boat as them. I used my Lavabit email account for 10 years. It was my only email account”.

Using heartbeats as passwords to secure medical devices

Using heartbeats as passwords to secure medical devices

It is time to start thinking of our hearts as random number generators that can serve as passwords to secure medical devices that are vulnerable to hacking, US researchers at Rice University have proposed.

Monday review - the hot 17 stories of the week

Monday review

Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.

Faces, gestures, heartbeats - how will the passwords of the future work?

Samsung Galaxy S5 fingerprint scanner hacked with same flaw as iPhone 5s

Researchers regularly come up ideas to replace passwords.

Will any of them ever become the new standard for authentication? Are we going to be stuck with passwords forever, or is there a brighter future out there somewhere?

Reality TV mother-of-eight Kate Gosselin sues husband for "hacking" email, phone, revealing private info

Reality TV mother-of-eight Kate Gosselin sues husband for "hacking" email, phone, revealing private info

Kate Gosselin, who appeared in a reality TV docusoap about her life with her eight children, including sextuplets, is suing her husband for allegedly hacking into her personal email account, her phone and her bank account, as well as stealing a hard drive full of personal files including family photos.

Chrome, Firefox display plain-text passwords with a few clicks

Chrome, Firefox display plain-text passwords with a few clicks

An ongoing catfight has boiled up regarding whether these are features or security fright-fests, particularly given that the nontechnical masses aren't liable to know that they can, for example, tell Google not to store passwords or set up a master password in Firefox.