A reflection on whether this approach to addressing IoT security challenges can ‘deliver the goods’ and how consumer awareness can help. According to an article by the BBC, the United Kingdom’s Digital Minister Margot James is proposing legislation to introduce a new labelling system to show customers how secure an IoT product is. In order to … More The UK plans to legislate to secure IoT, but is it really the answer?
So, do you think you’ve been ‘pwned’? That’s the question to ask yourself. May 2nd is World Password Day, a day to reflect on just how vulnerable a poor password can leave you. As more and more of the processes and tools we use in our everyday lives shift to the online world, the number … More World Password Day: A day to review your defenses
The notorious six-digit string continues to ‘reign supreme’ among the most-hacked passwords. An analysis of the 100,000 most-commonly re-occurring breached passwords confirms that ‘123456’ is the undisputed king of atrocious passwords. Using data from Have I Been Pwned (HIBP), a website that allows users to check if their email addresses or passwords have appeared in a known … More Over 23 million breached accounts used ‘123456’ as password
Some users of Microsoft’s web-based email services such as Outlook.com had their account information exposed in an incident that, as it later emerged, also impacted email contents. Microsoft has acknowledged a security incident that, for almost three months, gave hackers access to information related to an unknown number of email accounts on the tech giant’s … More Microsoft reveals breach affecting webmail users
The new wireless security protocol contains multiple design flaws that hackers could exploit for attacks on Wi-Fi passwords. WPA3, a new Wi-Fi security protocol launched in June 2018, suffers from vulnerabilities that make it possible for an adversary to recover the password of a wireless network via “efficient and low cost” attacks, according to a new academic … More WPA3 flaws may let attackers steal Wi-Fi passwords
Streaming media feature among services that take the spotlight in a report on credential-stuffing attacks in 2018. Hackers made 30 billion attempts last year that involved testing out purloined or leaked login details en masse in a bid to invade other people’s online accounts, reads a report by content delivery network provider Akamai. In automated attacks called … More Credential-stuffing attacks behind 30 billion login attempts in 2018
The databases, sitting unprotected on cloud servers, contained reams of information amassed by two apps integrated with the social network. Two caches of data on millions of Facebook users were recently discovered sitting unprotected on cloud-computing servers. In one security lapse, no fewer than 540 million records on Facebook users were found lying around in … More 540 million records on Facebook users exposed by third-party apps