Posts Tagged ‘password manager’

Security Issues Found in Nine Password Managers for Android (LastPass, Dashlane, …)

Monday, March 6th, 2017

Considering how often major security problems with password managers seem to turn up, you’d probably be better off just writing down your passwords down on the back of a business card.

Security researchers of the Fraunhofer Institute found severe security issues in nine password managers for Android that they analyzed as part of their research. Password managers are a popular option when it comes to storing authentication information. All promise secure storage either locally or remotely, and some may add other features to the mix such as password generation, automatic sign ins, or the saving of important data such as Credit Card numbers or Pins.

(more…)

Researchers to Reveal Critical LastPass Issues in November 2015

Thursday, September 17th, 2015

In the end, will it turn out that writing down your passwords on the back of an old business card in your wallet is actually more secure than an online password management service?

Password managers are great as they store a virtually unlimited number of important information, accounts, passwords, credit card numbers and other sensitive data. They keep you from having to memorize unique strong passwords, or use other means to remember them such as writing them down. All the data is protected by a single master password, and, if supported, by additional means of protection such as two-factor authentication.

(more…)

LastPass Hacked – What this Means to You

Tuesday, June 16th, 2015

Could it be that simply writing down your passwords on an old 3×5 card is actually safer than an online password manager?

Online security company LastPass published an announcement yesterday on the official company blog that it detected and blocked suspicious activity on the company network. According to the information posted on the blog, the company did not find evidence that LastPass user accounts were accessed or user vault data was downloaded. The company did not mention when it first noticed the breach but some users reported that they started to receive spam to email addresses used exclusively for the password manager account on June 8th.

(more…)

Password Improvements Coming to Windows 8

Thursday, December 15th, 2011

Apparently, the new password management feature for Windows 8 still needs some work …

When I first read that Microsoft made the decision to improve Windows 8′s credentials feature I was all excited about it. Who would not want a built-in password manager that would be tied automatically to the user account of the system? But as I read on I noticed that the improvements are rather limited. Lets take a look at what Microsoft has in store in this regard.

(more…)

The LastPass Security Incident – What I Did

Thursday, May 5th, 2011

This article provides a pretty good illustration of one of the major weaknesses of password management solutions; if they can hack their way into your password management solution, they’ve hacked their way into everything you thought was secure.

After finding out that there might have been a security breach at LastPass, a company known for their online password management solution, I quickly changed my master password and started to think about possible consequences.

(more…)

Object-Based Password Generator for Firefox

Thursday, January 20th, 2011

This is definitely an interesting idea; it might not work for every user, but it sounds worth trying out …

Password rules can be brought down to just a few. Users need to create unique secure passwords for the services that they use. Unique means that a password should only be used on one site, secure that it should have a healthy amount of chars (most experts suggest 16+) made up of upper and lower case letters, numbers and special characters.

(more…)

Master Password+ Improves Firefox’s Master Password Feature

Wednesday, January 5th, 2011

This one sounds like it could be extremely handy … but it also seems like it might be a prime target for hackers.

Firefox, like most modern web browsers, can be used to save login information so that they do not have to be entered by the user again on the next visit to a website or service. This behavior could be problematic on multi-user systems if users manage to get access to a user’s Firefox installation as login information are readily available for anyone who looks for them in the browser’s options.

(more…)

GPEX – Graphical Passwords for Firefox

Monday, September 13th, 2010

Personally, I usually just write passwords down so I don’t forget them … but a graphical password seems like a good idea too.

Secure passwords have one big disadvantage: They are hard, and sometimes even impossible to remember, especially if different secure passwords are created for each web and local service. We all know some basic rules for secure passwords, like making sure that they do not contain dictionary words or words that have a special meaning to the user, have a minimum length that is considered to be secure these days and use a selection of all available characters.

(more…)