Troy Hunt

DECEMBER 4, 2020

that's the launch blog post, how things have changed. and yet stayed the same) Apparently, "red" Texans don't like being told their password is crap (and other ridiculous insights) Also on stupid emails, apparently I'm gonna be in trouble with the law - today (nothing further yet, but of course I'll share any updates ??)

Password Management 282

Password Management IoT Passwords 282

The Hacker News

JULY 1, 2022

Google on Thursday announced a slew of improvements to its password manager service aimed at creating a more consistent look and feel across different platforms. The updates are also expected to automatically

Password Management 98

Password Management Passwords 98

Troy Hunt

SEPTEMBER 10, 2021

An early one today as I made space in the schedule to get out on the water 😎 I'm really liking the new Apple AirTags, I'm disliking some of the international media coverage about Australia's COVID situation, another gov onto HIBP and a blog post I've wanted to write for a long time on biometrics.

Password Management 274

Password Management Media Passwords Risk 274

Troy Hunt

MARCH 29, 2018

That blog post had been in the works for many months before this partnership was conceived of, but I ultimately decided to get it out before this announcement to help explain my thinking. Why It Makes Sense to Partner with a Password Manager Now. I spent a few hours manually updating all passwords to all sites.

Password Management 279

Password Management Passwords Data breaches Retail 279

Adam Shostack

JANUARY 2, 2025

The passwords I chose are unlikely to be better than toz*!Iikc@mpP8gD Iikc@mpP8gD (with a password manager theyll be equally good, but most people dont use a password manager.) Ok, technically theres more lessons, which are in this blog post, but you know what I mean. Why make it harder?

Banking 130

Banking Passwords Password Management Authentication 130

Duo's Security Blog

SEPTEMBER 14, 2021

—Elie Bursztein, Cybersecurity Research Lead, Google Non-Traditional Authentication Methods Move the Needle Two contemporary trends in primary authentication are password managers and biometrics. Password managers are a tool which securely stores a user’s existing passwords and can assist in the creation of new, more secure passwords.

Password Management 105

Password Management Passwords Authentication Accountability 105

CSO Magazine

AUGUST 26, 2022

LastPass, maker of a popular password management application, revealed Thursday that an unauthorized party gained access to its development environment through a compromised developer account and stole some source code and proprietary technical information. To read this article in full, please click here

Password Management 79

Password Management Passwords Architecture Encryption 79

Troy Hunt

MAY 29, 2024

unique passwords provided by law enforcement agencies into Have I Been Pwned (HIBP) following botnet takedowns in a campaign they've coined Operation Endgame. That link provides an excellent over so start there then come back to this blog post which adds some insight into the data and explains how HIBP fits into the picture.

Passwords 358

Passwords Password Management Data breaches Cybercrime 358

SC Magazine

APRIL 23, 2021

In an April 23 blog , the firm claimed to have digital evidence that Australian company ClickStudios suffered a breach, sometime between April 20 and April 22, which resulted in the attacker dropping a corrupted update to its password manager Passwordstate. This is a developing story. Check back for updates.

Password Management 89

Password Management Passwords Media Malware 89

NSTIC

OCTOBER 13, 2022

The key behavior that we are highlighting this week for Cybersecurity Awareness Month is using strong passwords and a password manager. Take a look at her responses to our questions below… This week’s Cybersecurity Awareness Month theme is using strong passwords and a password manager. As a senior

Password Management 73

Password Management Passwords Cybersecurity Technology 73

Google Security

OCTOBER 12, 2022

In this post we cover details on how passkeys stored in the Google Password Manager are kept secure. See our post on the Android Developers Blog for a more general overview. Passkeys are a safer and more secure alternative to passwords. A single passkey identifies a particular user account on some online service.

Password Management 85

Password Management Passwords Encryption Backups 85

Troy Hunt

OCTOBER 28, 2020

Everything becomes clear(er) if I manually change the font in the browser dev tools to a serif version: The victim I was referring to in the opening of this blog post? Obviously, the image is resized to the width of paragraphs on this blog, give it a click if you want to check it out at 1:1 size.

Phishing 363

Phishing Password Management Passwords Internet 363

The Last Watchdog

JANUARY 31, 2022

In other words, dynamic passwords are changeable static passwords. Dynamic passwords need to be securely managed. Online and offline password managers come into play here. However, password managers introduce the problem of risk concentration, or putting all of one’s eggs in a single basket.

Passwords 232

Passwords Computers and Electronics Password Management Artificial Intelligence 232

IT Security Guru

MAY 5, 2022

While cycling passwords or single-use passwords is very valuable with highly privileged accounts, the value of constantly cycling a standard user password is much less if a complex password is used initially. . ? . Use complex passwords with at least eight characters.? . ? .

Passwords 105

Passwords Authentication Password Management Accountability 105

Troy Hunt

JULY 26, 2019

Shape Security is sponsoring my blog this week (Captcha is no longer enough, they're talking about how Shape Connect blocks automation & improves security instantly, with a 30 minute implementation).

Password Management 205

Password Management Passwords Authentication 205

Krebs on Security

SEPTEMBER 22, 2023

The password manager service LastPass is now forcing some of its users to pick longer master passwords. But critics say the move is little more than a public relations stunt that will do nothing to help countless early adopters whose password vaults were exposed in a 2022 breach at LastPass. ”

Passwords 317

Passwords Encryption Password Management Cryptocurrency 317

Troy Hunt

FEBRUARY 19, 2021

I'm talking (somewhat vaguely) about the book I'm working on, how Facebook has nuked all news in Australia (which somehow means I can't even post a link to this blog post there), yet more data breaches, the awesome Prusa 3D printer I now have up and running and a whole heap more about the IoT things I've been doing.

Password Management 200

Password Management IoT Data breaches Passwords 200

The Last Watchdog

NOVEMBER 22, 2021

4) Use a password manager. Since memorable passwords are difficult to crack, the opposite is equally true: Safe passwords are hard to recall. Instead, password managers (also called password vaults) are ideal for complying with cybersecurity protocols.

Passwords 244

Passwords Password Management Accountability Data breaches 244

CSO Magazine

SEPTEMBER 1, 2022

Password management vendor Dashlane has announced the introduction of integrated passkey support in its password manager, unveiling an in-browser passkey solution to help tackle the issue of stolen/misused passwords. Passkey support includes secure sharing, access control, multi-device sync capabilities.

Password Management 66

Password Management Passwords Authentication 66

Malwarebytes

APRIL 28, 2025

Ive lost count of how many blogs Ive written about stalkerware -type apps that not only exposed the people they spied on but also ended up exposing the spies themselves. Change the passwords that may have been seen. You can make a stolen password useless to thieves by changing it. Enable two-factor authentication (2FA).

Passwords 84

Passwords Phishing Spyware Password Management 84

Troy Hunt

JULY 9, 2018

The first part of that is a simple fix we all have control of as individuals but is extremely hard to address as service operators: people need to stop reusing passwords. Go and get a password manager (I use 1Password ), generate random strings for passwords, job done. (Of

Passwords 223

Passwords Password Management Data breaches Accountability 223

Webroot

MARCH 3, 2025

How to protect yourself and your data Smart ways to secure your devices Strong passwords – Make them long, random, and unique. Password managers Automatically generate and store strong passwords. Solutions Webroot Premium and Webroot Essentials offer ultimate protection and include password managers.

Consumer Protection 88

Consumer Protection Identity Theft Scams Social Engineering 88

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. I’ve never been comfortable recommending password managers, because I’ve never seriously used them myself.

Cryptocurrency 360

Cryptocurrency Passwords Encryption Accountability 360

Troy Hunt

FEBRUARY 23, 2019

In other news, there was old news appearing as new news about how hosed you are if your machine is compromised with the level of hosing extending to your password manager. I've just ordered 10k more HIBP stickers to last me through upcoming events so they'll be coming with me.

Password Management 169

Password Management Passwords Risk 169

Identity IQ

MAY 2, 2023

What are the Benefits of a Password Manager? IdentityIQ Passwords are essential when keeping your information safe on your devices. But unfortunately, many people use weak or the same password, making it easy for hackers to crack them. Research shows that 52% of people reuse passwords for multiple accounts.

Password Management 52

Password Management Passwords Identity Theft Accountability 52

The Last Watchdog

AUGUST 29, 2022

This data strongly indicates that password management and 2FA are crucial for any organization or startup to become more secure from web attacks. We’ve shared some helpful guidance on password security at Zigrin Security blog. Shifting exposures. The landscape of the cyber domain is in flux.

Hacking 201

Hacking Passwords Password Management Data breaches 201

Duo's Security Blog

OCTOBER 4, 2023

No matter how many letters, numbers, or special characters you give them and no matter how many times you change them, passwords are still @N0T_FUN! Using strong passwords and a password manager 2. Present In the present, although we know passwords are flawed and are N0T_FUN, we must live with them.

Password Management 133

Password Management Passwords Authentication Social Engineering 133

Troy Hunt

SEPTEMBER 8, 2022

Troy Hunt takes us on his life journey, ups and downs, explaining how haveIbeenpwned came to be, raising awareness of the world’s poor password and online security habits. Plenty of tech, data breaches, career hacks, IoT, Cloud, password management, application security, and more, delivered in a fun way.

InfoSec 363

InfoSec Password Management Passwords IoT 363

Heimadal Security

SEPTEMBER 19, 2022

In an update to the notification regarding the cyberattack suffered in August, LastPass, one of the most widely used password management programs in the world, shared the conclusion of the investigation following the attack.

Passwords 122

Passwords Encryption Password Management Cybersecurity 122

Troy Hunt

JANUARY 17, 2024

It's usually something to the effect of "hey, have you seen the Spotify breach", to which I politely reply with a link to my old No, Spotify Wasn't Hacked blog post (it's just the output of a small set of credentials successfully tested against their service), and we all move on. Until the Naz.API list appeared.

Passwords 363

Passwords Password Management Hacking Accountability 363

Troy Hunt

JULY 21, 2020

This email address & password combination has existed only in two places: my memory and beeradvocate's database. Not even a password manager. I see this all the time and I literally have a blog post in progress titled "Has a Site Been Breached Because I Received an Email to an Address Unique to Them?"

Passwords 353

Passwords Accountability Password Management Backups 353

Heimadal Security

NOVEMBER 4, 2022

Malware is disguised as a legitimate program on fake websites that imitate official download portals for SolarWinds Network Performance Monitor (NPM), KeePass password manager, PDF Reader Pro, and Veeam Backup and […]. The post New RomCom RAT Campaign Abusing Well-Known Software Brands appeared first on Heimdal Security Blog.

Software 119

Software Password Management Backups Passwords 119

The State of Security

AUGUST 26, 2022

LastPass, the popular password manager trusted by millions of people around the world, has announced that it suffered a security breach two weeks ago that saw hackers break into its systems and steal information. Read more in my article on the Tripwire State of Security blog.

Passwords 94

Passwords Password Management Data breaches 94

Heimadal Security

DECEMBER 3, 2021

You may recall that we reported a while ago that state-backed advanced persistent threat (APT) organizations had been actively exploiting a significant hole in a Zoho single sign-on and password management solution since early August 2021. What Happened?

Password Management 119

Password Management Passwords Cybersecurity 119

Thales Cloud Protection & Licensing

JANUARY 31, 2025

As we celebrate Change Your Password Day on February 1st and 2FA Day on February 2nd, theres no better time to rethink and upgrade how we protect our digital lives. 2025 must be the year we adopt modern security practices, such as passkeys, phishing-resistant 2FA, and password managers, to ensure safer, stronger authentication for everyone.

Phishing 62

Phishing Passwords Password Management Authentication 62

Webroot

APRIL 4, 2025

That way if one of your passwords is leaked, hackers wont be able to use it to access any of your other accounts. Password managers: Of course, we all need many unique passwords and its tricky to keep track of them all, especially when theyre complicated and one-of-a-kind. Thats where a password manager comes in.

Identity Theft 60

Identity Theft Banking Password Management Passwords 60

Security Boulevard

AUGUST 2, 2022

What are the best methods of WordPress password protection for website administrators? This blog post examines the top password security options, such as strong password policies, password managers, two-factor authentication, educating users, and the use of other, wider safeguards.

Passwords 97

Passwords Password Management Education Authentication 97