Password Security

Secrets of Enterprise Password Management

Some Things Never Change in Password Security

People using the same passwords for multiple accounts is a problem. People writing passwords down or user fatigue with password management as an excuse to justify weak passwords are big issues. Simple passwords get cracked more easily, and when people reuse passwords a hack on your favorite dog food delivery service means they have a password that exposes corporate data.

Acceptable Use Policy for User Level Passwords

Passwords should never be stored online. Refrain from using the same password for personal and corporate accounts. Use a passphrase on passwords for remote users. Decline the “Remember Password” prompt box of web browsers, regardless if you’re using a private or shared computer.

10 Privacy Threats to Beware

Celebrity iCloud Hack Exposes More Than Data

The iCloud hack was a two part attack. The first part was obtaining the email addresses (Apple IDs) of the targets. The second part was understanding that the iCloud service had a flow that allowed an unlimited number of bad password attempts without lockout or alerting.