weak password

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Weak passwords dominate statistics for Hotmail's phishing scheme leak

Weak Passwords suckUntil about 4 years ago my organization had no restrictions on passwords. Our students got their birthdays or their phone numbers as passwords and our staff could choose whatever they wanted. Most common staff password was 1234. Well after years of security breaches and administration...

Tags: MSN Hotmail, phishing, password, weak password

Discussion threads 2009-10-06

Additional Resources

Let's get rid of usernames and passwords for good

RE: Let's get rid of usernames and passwords for goodIf you think technology can solve your security problems, then you don't understand the problems and you don't understand the technology. -Bruce SchneierCommon sense & best practicesFirst off social networking sites are a DISASTER waiting to happen, private data into a...

Tags: password, security

Discussion threads 2009-11-23

Source code for ikee iPhone worm in the wild

iPhone is officially the most malware ridden mobile platform in the worldAnd since the "bad guys" always go after low hanging fruit, that [b]proves[/b] that iPhone is the [b]least[/b] secure mobile platform in the world. Buy an iPhone if you want to be infected [b]within seconds[/b] by malware [b]that requires...

Tags: Smart phones, Cyberthreats, Apple iPhone, jailbreak, Apple Inc.

Discussion threads 2009-11-10

Web Security ToolSet 1.67 (Windows)

The Toolset contains. WebFuzzer - Search for web application errors, specific pages. Injection Browser - Find vulnerable parameter for html injections on web applications. MD5 Searcher - Find already bruteforced/cracked MD5 hashes. Authentication Tester - Find weak username/password combinations for Basic Authentication and HTML Forms. Database Extractor - Verify if...

Tags: Web Server, Web, HTML, Web Application, Microsoft Windows, Web Security, Elanize, Toolset, Web Servers, Cloud Computing, Databases, Internet, Enterprise Software, Software, Data Management

Software downloads 2009-11-09

Weak passwords dominate statistics for Hotmail's phishing scheme leak

The recently leaked accounting data of thousands of Hotmail users -- Gmail has also been affected -- obtained through what appears to be a badly executed phishing campaign, once again puts the spotlight on the how bad password management practices remain an inseparable part of the user-friendly ecosystem. ...

Tags: MSN Hotmail, Password, Phishing, Security, Spam And Phishing, Dancho Danchev

Blog posts 2009-10-06

L0phtCrack 6.0.7 (Windows)

L0phtCrack is back. It's time to audit your passwords. L0phtCrack 6 is the award-winning password audit and recovery tool for Windows and Unix passwords. Security experts from industry, government, and academia agree that weak passwords represent one of the ten most critical internet security threats, and are receiving more attention...

Tags: Password, Microsoft Windows, L0phtCrack, L0phtCrack 6

Software downloads 2009-10-05

Sisma 2.0 (Windows)

Sisma is an easy-to-use password manager that allows you to store and manage your passwords in a secure and convenient way. Sisma keeps your accounts details and passwords in a secure database that is encrypted with strong 256-bit Advanced Encryption Standard (AES, Rijndael) cipher. Sisma includes a strong random password...

Tags: Password, Microsoft Windows, Digital Confidence, Sisma

Software downloads 2009-09-30

Microsoft Zune HD: Going beyond the specs

Zune PlatformI think its quite easy to see where MS are going with this, establish a brand for Entertainment *Zune make some premium products *Zune HD and try to continue to raise its profile. The strength here is that if they can provide a more unified mediacentre/xbox/zune/mobile store accross all...

Tags: Tools & Techniques, Advertising & Promotion, TV & Home Theater, Zune 4.0, Microsoft Zune, Microsoft Corp.

Discussion threads 2009-09-15

The Linux botweb story that wasn't ...

One of the things that always confused me...If you can access the source code to Linux, then wouldn't it be possible to crack a password, and then alter the compromised system's source code to suit the hacker's needs?That doesn't seem to secure to me...The short answer is yes.But in reality...

Tags: OPEN SOURCE, Linux, source code, password, Apache Software Foundation, Microsoft IIS Server, security

Discussion threads 2009-09-14

OpenID biggest government boost yet for open source

We still need to come up with a fool proof way to keep hackers from resetting your Yahoo, Google, MSN, or AOL account and taking control of your identity. Of course it also has to be easy for the REAL owner to recover his password if he forgets it. Open...

Tags: open source

Discussion threads 2009-09-09

Password-reset flaw haunts WordPress admins

Open source and PHP at its worstI cannot fathom the design decisions that went into PHP. Maybe that's because there weren't any. That "language" I use that term in the broadest sense here is accident upon accident, quirk upon quirk, patch upon patch. PHP is a complete mess without a...

Tags: Scripting languages, PHP, Wordpress

Discussion threads 2009-08-11

Dead-Finger Tech: My three "must have" bits of tech!

Dead-Finger Tech: My three "must have" bits of tech!KeyPass is better than PasswordSafeIf you like PasswordSafe try KeyPass. It is much, much better (yes, I have used both.) You can also carry in on you USB:http://keepass.info/I'd love an IronkeyIf only I had information worth protecting :-(RE: Dead-Finger Tech: My...

Tags: Linux, KeyPass, Dead-Finger Tech, PasswordSafe, Password Safe, RoboForm, KeePass, password

Discussion threads 2009-07-29

Twitter hacks gives L.A. cold feet over Google plan

Los Angeles is considering a multimillion-dollar plan to adopt Google's cloud services, but in the aftermath of a hacker accessing Twitter's internal docs based on weak passwords on Google Docs, some city leaders are getting cold feet, AP reports. Paul Weber, president of the Los Angeles Police...

Tags: Google Inc., Password, Twitter, Security, Richard Koman

Blog posts 2009-07-21

Sentry 2020 3.0 (Mobile)

font.title3{color: #003366;font-weight: bold;} Overview Enterprise security tool utilizing transparent encryption to protect important information stored on PocketPC computers. Seamlessly encrypts documents while they are being accessed by Pocket Word, Pocket Excel and other applications. You have every reason to be concerned about who has the access to the business data...

Tags: Security, Microsoft Windows Mobile, Mobile, PC, SDK, Handheld Computer, Softwinter, Performance Sentry 2020, Pocket PC, Microsoft Windows, Microsoft Windows CE, Mobile Operating Systems, Handhelds, Operating Systems, Mobile Applications, Wireless And Mobility, Hardware, Software

Software downloads 2009-07-09

Scraping, Denial of Service, and Brute Force Attacks! Oh My!: Identifying and Controlling Automated Clients

Anti-Automation defenses are critical in today's web application security landscape. Breach Security's product line is uniquely positioned to help organizations address these automated types of attacks. Only through the combination of all of these capabilities can organizations gain true protections against these threats. Many systems will allow the use of...

Tags: Denial Of Service, Password, Attacker, Attack, Breach Security, Anti-Automation Defense, Security

White papers 2009-07-01

Should "Standard User" be the default in Windows 7?

Should "Standard User" be the default in Windows 7?Nopeit's one more example of how MS and usability are mutually exclusive. OS X has been able to implement credential checks effectively.Oh, and just to forestall the inevitable strawman about OS X now being a swiss cheese OS, the purpose of credentials...

Tags: Microsoft Windows, UAC, standard user, admin account, Microsoft Windows 7, security

Discussion threads 2009-06-11

VBASafe 1.6 (Windows)

VBASafe is an advanced product specifically designed to protect your VBA code and intellectual property. Numerous third party tools are available on the internet which can be easily used to break the password security of VBA code. With VBASafe your VBA code is converted to a format which is unreadable...

Tags: Microsoft VBA, Microsoft Windows, DataSafeXL, VBASafe, Third Party Tool, Scripting Languages, Software/Web Development, Web Development

Software downloads 2009-06-01

China's 'secure' OS Kylin - a threat to U.S offensive cyber capabilities?

China's 'secure' OS Kylin - a threat to U.S offensive cyber capabilities?Interesting! There is no way that you can start from scratch these days and have a usable OS in a reasonable time. Look how long it has taken Linux distros to catch up to Mac and Windows and they...

Tags: Operating systems, operating system, OS Kylin, U.S, security

Discussion threads 2009-05-13

Study: Silent patching best for securing browsers

Study: Silent patching best for securing browsersAll MS had to dowas silently update the update service which would break nothing and the web went bonkers.I haven't had an issue with an MS update in a long time. Nor an Apple update for that matter.But we test every one regardless,...

Tags: Web browsers, Web browser, Microsoft Corp., Google Inc., Chrome

Discussion threads 2009-05-05

Online broker CommSec criticised for weak passwords, lack of SSL

In times when vendors are vertically integrating by offering virtual keyboards for secure Ebanking, and banks themselves are requiring end users to run antivirus software if they were to file a fraud claim, others are busy fixing security design flaws. Earlier this month, a Melbourne based computer...

Tags: Password, Flaw, SSL, Online Broker, CommSec, Password Best Practice, Security, Dancho Danchev

Blog posts 2009-04-29