A huge collection of email addresses and passwords, which can be used in attempts to break into online accounts, has been discovered.
If you are one of the affected users, what should you do about it?
Is password manager 1Password treating its customers unfairly? Are autonomous cars driving us around the bend? And what is this Net Neutrality thing anyway?
All this and more is discussed in the latest edition of the “Smashing Security” podcast.
The popular password management firm LastPass is working to fix major vulnerability in its software, responsibly disclosed to it by a security researcher.
David Bisson reports.
The Smashing Security team tackle the thorny topic of passwords and offer some advice and tips for computer users.
Take a listen and let us know what you think.
Working separately, two vulnerability researchers have found worrying ways to steal passwords from the popular online password manager LastPass.
Fortunately, LastPass has responded quickly – fixing the bugs before they can be maliciously exploited. Here is what you need to know.
David Bisson wonders if he has made a mistake in his choice of password manager.
It may have kept his passwords secure, but Dashlane has published his email address to the world.
Two security researchers have discovered a number of bugs, bad practices, and design issues in the popular LastPass password manager.
David Bisson reports.
NatWest Bank has made some videos telling you how to be safer online. A noble effort, but unfortunately their password advice is poor.
Learn more about the mistake they made in my own response video.
Make sure that you are using different passwords for every website that you access. Reusing passwords is just asking for trouble.
Watch my video to learn more.
A software engineer has shined a light on a potential weakness in 1Password that could expose unencrypted metadata about vault entries.
Read more in my article on the Hot for Security blog.
LastPass’s announcement has upset a lot of users, but should you dump the password manager for another product?
Guest contributor Bob Covello shares his thoughts.
It’s a real shame to see a company not helping its customer use safer passwords, especially in the wake of a data breach. Let’s hope TalkTalk gets a clue and sees sense soon.
Another website is found preventing security-minded users from pasting complex passwords into online forms.
British Gas customer Ben Woodward understands the benefits of having a complicated, hard-to-remember password rather than a dumb, easy-to-guess one.
Unfortunately, it doesn’t seem that British Gas agrees.
Turns out that hacked spyware company was using some pretty dumb passwords.
The LastPass hack may rattle some people’s faith in password managers, but the truth is that they’re a heck of a lot safer than the alternative.
Read more in my article on the Optimal Security blog.