University of Southern California

Category Archives: Password Security

Dropbox Hack

Posted on by mbordas

Actions: Do not reuse passwords across different sites and services; if you do, change them to passwords unique to each site and service. What happened? A hacker posted a plain-text file to Pastebin with a provocative headline claiming that Dropbox … Continue reading

Posted in Password Security, Security Breach | Tagged ,

Server certificates and Heartbleed

Posted on by Robert

Cloudflare, a large web-hosting company, has a very detailed article on how server certificates are not (in the real world) extractable using the Heartbleed bug: http://blog.cloudflare.com/answering-the-critical-question-can-you-get-private-ssl-keys-using-heartbleed They set up a test server and challenged anybody to obtain the private key. … Continue reading

Posted in Password Security, Recommended Reading, Security Updates | Tagged

Passwords You Need to Change due to the Heartbleed Bug

Posted on by mbordas

Many websites and online services, including Facebook, Instagram, Google, and Yahoo, were affected by the recently announced Heartbleed vulnerability. The site linked below has collected responses from social media, email, financial, and other companies regarding steps they have taken to … Continue reading

Posted in Facebook, Password Security, Security Updates, Social Networking | Tagged

OpenSSL Vulnerability (Heartbleed Bug)

Posted on by mbordas

Security researchers have discovered a vulnerability, named the Heartbleed bug, in the OpenSSL encryption library that could allow attackers to access secure information stored in a server’s system memory, including usernames, passwords, and private encryption keys. OpenSSL is used by … Continue reading

Posted in Password Security, Phishing, Security Breach | Tagged

Adobe Systems Security Breach

Posted on by mbordas

On October 3, Adobe announced a security breach in their network that resulted in the illegal access of customer information and software source code. For more information about the breach, see Adobe’s Customer security alert and the Important Customer Security Announcement posted by Adobe’s chief security … Continue reading

Posted in Password Security, Phishing, Security Breach |

The Danger of Default Passwords

Posted on by mbordas

Many Internet-connected devices and services, such as routers, webcams, and databases, initially come with default usernames and passwords to allow new users to easily log into and configure a product. Many people neglect the important step of changing the default login information, leaving them vulnerable to cyber attack. … Continue reading

Posted in Password Security | Tagged

Password Management Tools

Posted on by mbordas

Using a single password for multiple sites may be a convenient practice, but it is not a safe one. Most IT security experts recommend using a different password for each online account to prevent hackers from gaining access to all … Continue reading

Posted in Password Security, Recommended Reading | Tagged

Over-The-Phone Password Change Allows Hackers To Destroy Reporter’s Digital World

Posted on by beltzer

The hacking of the Amazon account of a Wired reporter exposed a security flaw with the way Apple allows users to reset their AppleID passwords. By obtaining the last four digits of the reporter’s credit card, the hackers were able … Continue reading

Posted in Cloud Computing, Password Security, Social Networking | Tagged , , , , , ,

A Weak Password is a Hacker’s Best Friend

Posted on by beltzer

According to the “2012 Global Security Report” released by Trustwave, “Password1″ is the most commonly used password on business systems. Although it contains an upper-case character, a number, and nine characters, “Password1″ is a very easy password for hackers to … Continue reading

Posted in Password Security | Tagged ,

25 Worst Passwords of 2011: Is Yours One of Them?

Posted on by beltzer

Forbes.com has published a list of the 25 worst passwords of 2011. Read the article. If any of these passwords look familiar, please visit the ITS Password Change webpage to choose a new password. For ideas on choosing a better … Continue reading

Posted in Password Security | Tagged