World Password Day: A day to review your defenses
So, do you think you’ve been ‘pwned’? That’s the question to ask yourself today
Password
Over 23 million breached accounts used ‘123456’ as password
The notorious six-digit string continues to 'reign supreme' among the most-hacked passwords
Credential‑stuffing attacks behind 30 billion login attempts in 2018
Streaming media feature among services that take the spotlight in a report on credential-stuffing attacks in 2018
How to tell if your password has been stolen in a security breach
Following the revelation that a list containing millions of stolen usernames and passwords had appeared online, we tell you a few different ways to find out if your credentials were stolen in that—or any other—security breach
Google rolls out Chrome extension to warn you about compromised logins
The new tool aims to help in an age when billions of login credentials are floating around the internet
773 million email IDs, 21 million passwords for anyone to see in massive data dump
The vast dossier of login details appears to have been gathered from data stolen in many breaches
The most popular passwords of 2018 revealed: Are yours on the list?
Besides the usual suspects among the worst of passwords, a handful of notable – but similarly poor – choices make their debuts
Who needs passwords? Microsoft now lets you in with your face or security key
The software giant takes passwords one step closer to obsolescence as it now enables users to log into their Microsoft accounts with more modern forms of authentication
Strict password policy could prevent credential reuse, paper suggests
The solution to password recycling may be easier to implement than previously thought, according to a recent paper
Major sites still largely lax on prompting users towards safer password choices, study finds
A study assessed whether or not the most popular English-language websites help users strengthen their security by providing them with guidance on creating safer passwords during account sign-up or password-change processes
Attackers could use heat traces left on keyboard to steal passwords
The attack, called "Thermanator", could use your body heat against you in order to steal your credentials or any other short string of text that you have typed on a computer keyboard
Twitter advises all users to change passwords after glitch
A bug within Twitter’s internal systems exposed, in plain text, the passwords of an undisclosed number of users.
Recycling is a must, but why would you reuse your password?
World Password Day, celebrated on the first Thursday of every May, is a timely reminder of the fact that our passwords are the key to a wealth of personal information about us.
UK’s National Lottery urges millions of players to change their passwords
The lottery's operator has found that attackers probably used an automated method known as 'credential stuffing' to access up to 150 customer accounts.
Survey shows sloppy password habits among young Brits
Young people were singled out as increasingly likely victims of internet-borne fraud, including because of their penchant for liberal sharing of personal information.
Security education and social responsibility
We look at key trends for 2017 within this sector, from password security to the need for security education at all institutions: schools, businesses, governments.
A short history of the computer password
The modern computer password was introduced to computer science and the wider world in 1960 by Fernando Corbató. We look at its history and impact.
Fingerprint security: Three myths busted
Fingerprint security is growing in prominence, but is the technology behind it really as secure as we think it is? In this feature, we tackle three myths.
No more pointless password requirements
Peter Stancik discusses the new Digital Identity Guidelines drafted by NIST, which offers an update on password security.
Password‑stealing security hole discovered in many Netgear routers
A security researcher has described how he uncovered a severe security hole in dozens of different Netgear routers, meaning that "hundreds of thousands, if not over a million" devices could be at risk of having their admin passwords stolen by hackers.