Articles about Passwords

Employees working from home on a company-provided computer are putting businesses at risk with one in four consumers admitting to using their work email or password to log in to consumer websites and apps such as food delivery, online shopping and even dating apps.

A new study from automation platform Ivanti surveyed 1,000 Americans working from home during the pandemic on a company-provided computer to examine how consumer and enterprise cybersecurity habits have changed.

Continue reading →

Hackers responsible for a large-scale phishing campaign unintentionally left over a thousand sets of stolen log-in credentials accessible to the public via a simple Google search.

The error was uncovered by researchers at Check Point. and Otorio. The stolen credentials were stored in designated web pages on compromised servers.

Continue reading →

Using unique passwords is essential for keeping documents, data and accounts safe. However, it can be hard to remember them all.

Using password managers is the ideal solution for keeping everything organized. Now that the new year is nearly upon us, it’s time to take a look at the best password managers for 2021.

Continue reading →

This year more than ever we've all been spending large amounts of time online and that often means relying on passwords to access systems and sites.

According to password management app company Dashlane the average internet user has over 200 digital accounts that require passwords, and that figure is projected to double in the next five years.

Continue reading →

They're all likely to be part of your password according to a new survey from security.org which asked 750 Americans to share their password strategies and security habits.

It reveals some worrying trends, 45 percent of Americans are using passwords that are eight characters or less, with only 15 percent using strong password generators.

Continue reading →

Good security practices are more important than ever in the current climate, with people working from home using their own devices.

Password management specialist Dashlane is launching a new reporting tool that gives company administrators in-depth visibility into employee password security along with the ability to track improvements over time.

Continue reading →

The shortcomings of password security are well known. Indeed the death of passwords has been predicted for a long time but they still cling on.

There are a number of alternative authentication methods available, but confusion still reigns about the pros and cons of different approaches. To help cut through the mass of information, identity management company Beyond Identity has put together an infographic looking at alternative authentication methods and the security each provides.

Continue reading →

KeePass has long made life easier when it comes to managing an ever-growing list of passwords for websites, online accounts and so on. Now with the release of KeePassXC 2.6.0, users are being treated not only to a redesign -- including a dark mode option -- but also new features including offline database password health checks.

The program now features comprehensive reports about passwords stored in its database, including checking with security service Have I Been Pwned to see if any have been involved in password breaches. But there's more.

Continue reading →

Reuse of the same or similar passwords across accounts makes life easier for cybercriminals as they are able to try multiple servers using credentials exposed in breaches -- so called 'credential stuffing'.

Enterprise password manager 1Password is launching a new reporting tool for its users that allows them to swiftly identify compromised accounts and take action to protect the enterprise by alerting users to create new secure passwords.

Continue reading →

Tools like checkers and brute forcers freely available on the dark web are helping unskilled criminals launch automated attacks against organizations' websites.

A new report by Recorded Future also reveals the industries most affected by these tools are software, media and entertainment, eCommerce, finance, and telecommunications.

Continue reading →

Four out of ten IT security professionals still see usernames and passwords as one of the most effective means to protect access to their IT infrastructure, even though most hacking-related breaches are a result of weak, stolen or reused credentials.

A new report on access management from Thales also reveals that a majority of respondents say their organization plans to expand the use of usernames and passwords, even though the limitations could pose security challenges.

Continue reading →

Apple has launched a new open source project designed to promote collaboration between the  developers of password management software to help improve security for users.

The Password Manager Resources project has been created to make it easier for the developers of password managers to work together to ensure interoperability with websites, and to create a better experience for users. The aim is to integrate the strong password generating capabilities of the iCloud Keychain platform into password management apps.

Continue reading →

The headlines still haunt me.

May 7, 2020 marked "World Password Day," the kitschy, but pertinent annual reminder to clean up the logins that control access to our modern lives. For days, titles like "Time to Prioritize Passwords" and "Tips for Managing Your Passwords" popped up in newsfeeds and tips from experts flooded in. "Vigilantly change your passwords" and "use a different password for each account" they said, as if new configurations of characters and symbols were cures rather than curbs to cyberattacks. The problem is passwords don’t protect us anymore. Gartner predicts that by 2022, 60 percent of large businesses and nearly all medium-sized companies will have cut their dependence on passwords by half. But with COVID-19 requiring many of us to work from home in insecure environments, 60 percent is not enough, and 2022 is too late. 

Continue reading →

Despite the fact that credential stuffing using stolen passwords is one of the most common ways of breaching systems, new research from Balbix for this year's World Password Day finds that over 99 percent of employees reuse passwords across work accounts, or between work and personal accounts.

In addition the average password is reused not just once, but 2.7 times, and the average user is sharing eight passwords between all their accounts with 7.5 passwords shared between work and personal accounts.

Continue reading →

JPMorgan Chase is to enforce stricter security measures, banning third-party fintech apps from accessing customer passwords.

The existing method of data sharing provides -- with permission -- numerous apps with access to customers' bank accounts, but concerns have been voiced about the possible dangers. No timetable has been set out, but the American finance giant intends to use a token-based system that will provide third parties with access to "a narrow range of data in a secure form".

Continue reading →