ARS Technica wrote a piece on the continuing security flaw with password managers like LastPass and KeePass on Android. Technically, the problem is an Android problem, but from the user’s standpoint they don’t really care. The problem is tools like LastPass and many others use the Android clipboard to automatically log you on to a […]
Continue reading → [DISPLAY_ACURAX_ICONS]Target announced that they were breached in December of 2013 – about 22 months ago. This week a federal judge certified a class action against Target by a number of banks. Target says they are “disappointed” by the decision. This comes a month after Target agreed to pay Visa up to $67 million to settle […]
Continue reading → [DISPLAY_ACURAX_ICONS]The FBI released a warning this week regarding the Internet of Things security, which is pretty unusual. As a result, a lot of digital ink has been used up writing about it. I will use up a little more digital ink. What is unusual is the FBI warning doesn’t mention any particular issue – it […]
Continue reading → [DISPLAY_ACURAX_ICONS]Apple and the Department of Justice are not getting along these days. The DoJ wants Apple to feed them real time iMessage traffic for someone the DoJ is quietly investigating. Apple says that the way their system is designed, this is not possible. If the user stores their messages in iCloud, they can give the […]
Continue reading → [DISPLAY_ACURAX_ICONS]Pierluigi Paganini, a fellow security blogger in Italy, wrote about a situation with Vodaphone where a Vodaphone employee rumaged through a journalist’s texts and phone calls to try and find the source of a story that the journalist wrote which was critical of Vodaphone’s security. The journalist, Natalie O’Brien, pictured above, described it as “creepy […]
Continue reading → [DISPLAY_ACURAX_ICONS]After the Ashley Madison breach, everyone sighed a breath of relief because the passwords were encrypted with bcrypt. Bcrypt, as used by Ashley Madison, hashed the password 4,096 times. That calculation meant that even with fast computers it would take centuries to crack all of them. Until a group of hobbyists – yes hobbyists, not professional […]
Continue reading → [DISPLAY_ACURAX_ICONS]