1Password makes Passkeys available in mobile apps and web extensions
Password manager 1Password has announced that 1Password's mobile apps and web extensions now include support for Passkeys. This makes it even easier and more secure for users to log into websites that support it.
The end of the password is drawing ever closer as Passkeys become more widely avai... Read more
These are the most hacked passwords and tactics used in cybercrime
UK payment provider Dojo analyzed over 6 million passwords from the RockYou2021GitHub collection of breached password lists. The study uncovered frequently used passwords, their average length, and the popular subjects that appeared in numerous breaches.
Hackers employ various tactics to crack p... Read more
What are Passkeys? Removing the human element from authentication
For the longest time, the technology industry has been developing a future with password-free (passwordless) authentication. That future is now, with passkeys. But what are passkeys?
The FIDO Alliance was established with the goal of lessening the dependence on passwords almost ten years ago. An... Read more
Eurostar forces customers to update passwords, then locks them out
An attempt to beef up security has left Eurostar passengers unable to access their accounts online.
Eurostar, the international high-speed rail operator, is emailing its users this week and forcing them to reset their account passwords in order to upgrade the carrier's security posture.
Howev... Read more
Browser spellchecks discreetly send passwords to Google and Microsoft
Extended spellcheck features in Google Chrome and Microsoft Edge send sensitive form data to Google and Microsoft. The data contains personally identifiable information (PII) and, in certain situations, passwords.
Although the web browser feature is recognized and intentional, it raises question... Read more
Slack resets user passwords after bug
Slack reset the passwords of about half a percent of its userbase. The company attempts to mitigate a bug that provided hashed passwords to fellow workspace participants.
According to Slack, the bug was discovered by a researcher late last week and had a major impact on passwords. The vulnerabi... Read more
‘Most consumers are tired of traditional password authentication’
A Pindrop survey uncovers users’ annoyance at using traditional methods of account authentication.
Conventional password authentication and configuration consist of numerous authentication steps to ensure the right person is accessing an account. When resetting passwords, users are required to... Read more
Google plans to turn on 2FA by default for 150M users
In May, Google announced that it plans to enable 2FA (two-factor authentication/two-step verification) by default to enhance security for accounts. As it celebrates Cybersecurity Awareness Month, Google is once again reminding us that it will enable two-factor for 150 million more accounts by the e... Read more
Microsoft takes another big step towards going passwordless
Microsoft continues its relentless drive to get rid of passwords as sign-in options that enterprise customers use to access Azure Active Directory (AAD) and those consumers use to access Microsoft Accounts on Windows 10 and Windows 11 PCs.
Vasu Jakkal, Microsoft's corporate vice president of the... Read more
Kaspersky Password Manager has been making passwords that can be easily brute-forced
If you are in the business of generating passwords, you’d probably use an alternative source of entropy, other than the current time. However, for a long time, Kaspersky Password Manager has been doing just that.
In a blog post that caps off a saga that began two years ago, Ledger Donjon head ... Read more