Password | featured news

Skype faces up to password flaw

Skype says it has resolved a flaw with its password reset tool that could be used to hijack users' accounts on the chat tool.

 

Tool Kit: How to Devise Passwords That Drive Hackers Away

Passwords

It’s a good idea to be a little paranoid about password theft, and there are several ways to strengthen your defenses.

 

Yahoo says password vulnerability fixed

Yahoo says it has fixed the vulnerability that allowed 450,000 user email addresses and passwords to be stolen from its user-generated content service, Yahoo! Voices. In a blog posting, Yahoo said that the "compromised information was provided by writers who had joined Associated Content prior to May 2010, when it was acquired by Yahoo!. (Associated Content is now the Yahoo! Contributor Network.) This compromised file was a standalone file that was not used to grant access to Yahoo! systems and services."

 

Hackers Grab 1 Million Logins From Android Forum

Phandroid has announced that a hacker has recently accessed its user database, making off with usernames, email addresses and hashed passwords—and the problem looks like it could affect all of its one million-plus users.

 

Yahoo confirms 400,000 accounts hacked, some passwords stolen

The company said that although the breached accounts include user names from Yahoo and other companies, only 5% of the accounts had valid passwords. Yahoo said it is working to fix the vulnerability and is changing the passwords of the affected users. The company also said it is notifying other companies whose users may have been affected -- earlier we reported that they may include people who use AOL, Gmail, Hotmail and many others.

 

Hackers post 450K credentials pilfered from Yahoo

Hackers

Yahoo has been the victim of a security breach that yielded hundreds of thousands of login credentials stored in plain text. The hacked data, posted to the hacker site D33D Company, contained more than 453,000 login credentials and appears to have originated from the Web pioneer's network. The hackers, who said they used a union-based SQL injection technique to penetrate the Yahoo subdomain, intended the data dump to be a "wake-up call."

 

Yahoo investigating reported mass password breach

Yahoo Inc. said Thursday it is investigating reports of a security breach that may have exposed nearly half a million users' email addresses and passwords... The little-known group was quoted as saying that they had stolen the passwords using an SQL injection -- the name given to a commonly-used attack in which hackers use rogue commands to extract data from vulnerable websites.

 

Report: Hacker claims to upload 6.5M LinkedIn passwords

LinkedIn Passwords Leaked

A Russian hacker claims to have uploaded almost 6.5 million LinkedIn passwords, The Verge reports. LinkedIn in says in a tweet that "Our team is currently looking into reports of stolen passwords. Stay tuned for more."

 

Md. becomes first to OK password protection bill

Facebook Password

Maryland is poised to become the first state to ban employers from demanding applicants or workers hand over their log-in information for social media sites like Facebook....

 

Web passwords a thing of the past?

To minimize identity theft, the Obama administration is urging Internet companies to agree upon and adopt a standard, reliable identity-verification system that people can use for any website. Each person would choose one company, perhaps their e-mail service provider, to handle credentials for sensitive personal or financial information on other sites.

 

Subscribe to this RSS topic: Syndicate content