University of Southern California

Category Archives: Password Security

← Older posts

May 5 is World Password Day

Posted on by mbordas

The first Thursday of every May is World Password Day, when users are encouraged to brush up on their password security practices. Read on for some useful password tips.

Posted in Password Security |

Choosing Secure Passwords through Poetry

Posted on by mbordas

Users and security researchers have long struggled with the problem of coming up with passwords that are both easy to remember and difficult to crack. Two computational linguists from the USC Viterbi School of Engineering have come up with a unique … Continue reading

Posted in Password Security, Recommended Reading | Tagged , ,

Dropbox Hack

Posted on by mbordas

Actions: Do not reuse passwords across different sites and services; if you do, change them to passwords unique to each site and service. What happened? A hacker posted a plain-text file to Pastebin with a provocative headline claiming that Dropbox … Continue reading

Posted in Password Security, Security Breach | Tagged ,

Server certificates and Heartbleed

Posted on by Robert

Cloudflare, a large web-hosting company, has a very detailed article on how server certificates are not (in the real world) extractable using the Heartbleed bug: They set up a test server and challenged anybody to obtain the private key. … Continue reading

Posted in Password Security, Recommended Reading, Security Updates | Tagged

Passwords You Need to Change due to the Heartbleed Bug

Posted on by mbordas

Many websites and online services, including Facebook, Instagram, Google, and Yahoo, were affected by the recently announced Heartbleed vulnerability. The site linked below has collected responses from social media, email, financial, and other companies regarding steps they have taken to … Continue reading

Posted in Facebook, Password Security, Security Updates, Social Networking | Tagged

OpenSSL Vulnerability (Heartbleed Bug)

Posted on by mbordas

Security researchers have discovered a vulnerability, named the Heartbleed bug, in the OpenSSL encryption library that could allow attackers to access secure information stored in a server’s system memory, including usernames, passwords, and private encryption keys. OpenSSL is used by … Continue reading

Posted in Password Security, Phishing, Security Breach | Tagged

Adobe Systems Security Breach

Posted on by mbordas

On October 3, Adobe announced a security breach in their network that resulted in the illegal access of customer information and software source code. For more information about the breach, see Adobe’s Customer security alert and the Important Customer Security Announcement posted by Adobe’s chief security … Continue reading

Posted in Password Security, Phishing, Security Breach |

The Danger of Default Passwords

Posted on by mbordas

Many Internet-connected devices and services, such as routers, webcams, and databases, initially come with default usernames and passwords to allow new users to easily log into and configure a product. Many people neglect the important step of changing the default login information, leaving them vulnerable to cyber attack. … Continue reading

Posted in Password Security | Tagged

Password Management Tools

Posted on by mbordas

Using a single password for multiple sites may be a convenient practice, but it is not a safe one. Most IT security experts recommend using a different password for each online account to prevent hackers from gaining access to all … Continue reading

Posted in Password Security, Recommended Reading | Tagged

Over-The-Phone Password Change Allows Hackers To Destroy Reporter’s Digital World

Posted on by beltzer

The hacking of the Amazon account of a Wired reporter exposed a security flaw with the way Apple allows users to reset their AppleID passwords. By obtaining the last four digits of the reporter’s credit card, the hackers were able … Continue reading

Posted in Cloud Computing, Password Security, Social Networking | Tagged , , , , , ,

← Older posts