password security Archives - Cyber Security Minute

Key Lesson from Microsoft’s Password Spray Hack: Secure Every Account

Issued by: The Hacker News

In January 2024, Microsoft discovered they’d been the victim of a hack orchestrated by Russian-state hackers Midnight Blizzard (sometimes known as Nobelium). The concerning detail about this case is how easy it was to breach the software giant. It wasn’t a highly technical hack that exploited a zero-day vulnerability – the hackers used a simple…

Malware & Threats

Hackers Targeted SolarWinds Earlier Than Previously Known

Issued by: Security Week

SolarWinds had previously traced the origins of the hack to the fall of 2019 but now believes that hackers were doing “very early recon activities” as far back as the prior January, according to Sudhakar Ramakrishna, the company’s president and CEO. “The tradecraft that the attackers used was extremely well done and extremely sophisticated, where…

Application Security

Developers Still Don’t Properly Handle Sensitive Data

Issued by: Dark Reading

Open-source software projects continue to struggle with handling sensitive information, according to automated scans of hundreds of millions of commits to code repositories. Software-security toolmaker DeepCode found that four of the seven vulnerabilities classes with the greatest impact on the security of software projects had to do with failures to protect data. The categories of…

Network Security

Does poor password hygiene still hamper your ability to achieve high security standards?

Issued by: Help Net Security

While more businesses are investing in security measures like multifactor authentication (MFA), employees still have poor password habits that weaken companies’ overall security posture, according to LastPass. Given that stolen and reused credentials are linked to 80 percent of hacking-related breaches, businesses must take more action to improve password and access security to make a…

Network Security

Despite warnings, most people still don’t change their passwords

Issued by: Help Net Security

64% of people use the same password for some, or even all, of their online accounts, while only 21% use a different password for each account. These startling findings come from a survey of 1,050 people in the UK carried out by Bilendi on behalf European email services company, GMX. According to the survey, 9%…

Mobile Security

Apple’s intermittent password prompts prime iOS users for phishing

Issued by: Help Net Security

By asking iOS users to enter their AppleID password intermittently and with no regard of environment, Apple has laid the groundwork for phishers to go after the sought-after login credentials. Where’s the problem? “iOS asks the user for their iTunes password for many reasons, the most common ones are recently installed iOS operating system updates,…

Application Security

Leaving employees to manage their own password security is a mistake

Issued by: Help Net Security

Despite the clear and present danger that weak passwords pose to organizations, many remain focused on implementing technology based on policy, not the user, to address the problem. How do you manage password security? More than half of IT executives surveyed rely on employees alone to monitor their own password behavior, subsequently leaving the company at risk,…