Human heartbeats are near-unique – each person’s rhythm forms a mathematical pattern which can be used to identify people. A bracelet which aims to use this for secure ID took a big step towards PCs and phones in the home this week, as 6,000 developers began work on apps for it.
Apple’s fingerprint sensor has drawn a huge amount of attention (and hack attempts) ever since it launched on iPhone 5S – but it seems Android users will get their own fingerprint protection shortly.
“Passwords are done at Google,” said Heather Adkins, Google’s information security chief – and said that “the game is over” for start-ups relying on passwords as the chief method to keep users secure.
Security flaws in some models of HP LaserJet Pro printers can reveal users’ administrator passwords to remote attackers, a researcher has revealed.
Google’s Chrome browser has been criticized over its password security, after a developer found that anyone logged into the same OS account could easily see any saved website passwords in plain text.
A fiber-optic tabletop PC system “reads” fingerprints as people use it – and could form the basis of a secure system for transactions in shops or banks.
The PIN codes used to protect smartphones offer a useful line of defense against criminals – unless, that is, your device falls into the hands of the robot R2B2.
Passwords are outdated and “inevitably” fall into the hands of cybercriminals, according to a new advocacy group, Petition Against Passwords.
“Children are a formidable adversary – unlike any other,” says Microsoft security researcher Stuart Schechter, in a paper to be presented at the SOUPS security conference next week.
There are a few tricks to making passwords that will at least slow down cybercriminals – buying you time to reset your accounts if a list of encrypted passwords leak in a data breach.
Micro-blogging site Tumblr has warned users that passwords can be “sniffed” from its iPhone and iPad apps – and issued a “very important” security update for both apps.
Browser security warnings can work to protect users from phishing and malware sites – but “warning fatigue” means important alerts over site security can be conmpletely ignored.
A new biometrics system could “read” blood vessels under the skin using thermal imaging cameras – a system which its inventors claim would be “almost impossible to spoof.”
Medical devices including heart defibrillators, patient monitors and anaesthesia devices include a dangerous password vulnerability which could be exploited by cyber attackers, according to the FDA.
Evernote and LinkedIn have both added an option for two-factor authentication in the past few days – days after Twitter announced its optional two-factor security system.
Motorola has revealed plans for hi-tech authentication systems that could make accessing data faster and easier – including a “tattoo” with embedded sensors and antenna, and an “authentication pill” which turns the human body into a giant authentication token.
The free open-source content management system Drupal has reset all Drupal.org passwords after unknown attackers gained access to user account data including usernames, email addresses and hashed passwords.
The Financial Times has become the latest victim of Twitter hackers, after activists hacked accounts belonging to the newspaper, and also defaced areas of the FT site.
“Passwords are starting to fail us when used everywhere at internet scale,” said PayPal’s Chief Information Security Officer Michael Barrett at this week’s Interop expo in Las Vegas.
Even passwords considered “strong” by IT departments are often now vulnerable to hacking, according to professional services firm Deloitte. The firm predicts that 90% of user generated passwords will be vulnerable to hacking this year.