Google stored some G Suite passwords in plaintext since 2005
Google reveals it was not properly protecting some G Suite user passwords for the past 14 years.
Google reveals it was not properly protecting some G Suite user passwords for the past 14 years.
Users should enable two-factor authentication but they can improve their defenses significantly just by adding a recovery number to their account.
Firefox data breach notifications are coming.
It's also considering a breach notification service in the future.
Apple targets bad password practices and makes handling one-time codes less annoying.
US-CERT recommends admins should patch three bugs Cisco released fixes for on Wednesday.
"These aren’t bugs that need to be fixed, but rather insecure practices that should be stopped entirely," say Princeton privacy researchers.
You an remotely breach some Cisco products by typing in a blank password.
Australian government moves to curb abuse of 457 visas had a concerning side effect as IT-security positions were relegated to a short-term visa category that offers no potential pathway to permanent residency – potentially making Australia a less attractive destination for overseas security talent.
David Braue | 24 Apr | Read more
A coalition of lawyers, security experts, and rights advocates are campaigning to stop a plan to require foreigners reveal social media passwords before entering the US.
The inauguration of Donald Trump as US president led some to wonder whether a DDoS attack on Whitehouse.gov can be considered as a legitimate protest like any other. There was also buzz as outgoing president Obama’s pardon of secret leaker Chelsea Manning led to [an offer by Julian Assange to face extradition to the US.
David Braue | 23 Jan | Read more
There were concerns that enterprises were focusing too much on protecting themselves from sophisticated attacks and leaving themselves open to attackers utilising common techniques, while some analysts were warning that the incessant focus on security was causing password and security fatigue for users and CISOs alike. Little wonder many companies are keen to phase out passwords completely.
David Braue | 17 Oct | Read more
Facebook has fixed a serious bug in its password reset feature that gave an attacker endless opportunities to guess a six-digit code and reset an account's password.
Improving security doesn't always mean having to buy more equipment or invest in expensive training
By John E Dunn | 04 Nov | Read more
Yahoo has revamped its Yahoo Mail app with a new take on sign-in that aims for a frictionless login process with an in-app delivered one-time password— but it’s pretty easy to get locked out.