passwords – Page 37 – WindowsTechs.com

Popular business web apps fail to implement critical password requirements

Posted on July 20, 2022 by Help Net Security

Specops Software released new research finding cybersecurity weaknesses in business web apps including Shopify, Zendesk, Trello, and Stack Overflow. Amid a wave of cybersecurity incidents related to the COVID-19 pandemic, remote work, and nation-state … Continue reading Popular business web apps fail to implement critical password requirements→

Is my use of AES for password sharing secure?

Posted on July 20, 2022 by Sawyer

I’m trying to create a tool to create secure passwords and sends them to the client – previously I’ve used passwordsgenerator and pwpush.com for this. Unlike pwpush I don’t want to store passwords in a db to delete later. My application wo… Continue reading Is my use of AES for password sharing secure?→

Is my use of AES for password sharing secure?

Posted on July 20, 2022 by Sawyer

Why is it not possible to override password hashes

Posted on July 18, 2022 by theboringkid

I know that a password is stored as a hash, because then it is not possible to get the password even if you have access to the password database/file/…
But if you have access, couldn’t you just replace the password hash with some hash wh… Continue reading Why is it not possible to override password hashes→

Beware of password-cracking software for PLCs and HMIs!

Posted on July 18, 2022 by Zeljka Zorz

A threat actor is targeting industrial engineers and operators with trojanized password-cracking software for programmable logic controllers (PLCs) and human-machine interfaces (HMIs), exploiting their pressing needs to turn industrial workstations int… Continue reading Beware of password-cracking software for PLCs and HMIs!→

Are NetBIOS passwords case sensitive?

Posted on July 17, 2022 by Questioner

I was reading an old (2004) copy of Hacking for Dummies.
Within the PDF at section 200/387, it states that NetBIOS passwords are not case sensitive, making them more easy to crack. This has been quoted below.

NetBIOS passwords aren’t case… Continue reading Are NetBIOS passwords case sensitive?→

Cryptographic hash functions and personal password management

Posted on July 16, 2022 by Phastasm

Background: I’ve always reused same username/password on all websites and got hacked regularly. I am considering using a password manager, but I don’t like the need of storing a database. So I came up with my own idea.
Assume there are mul… Continue reading Cryptographic hash functions and personal password management→

Is it unsecure to use only a passphrase in luks for whole system partition encryption?

Posted on July 16, 2022 by Blockchain Office

When I use only a passphrase in LUKS for my whole system partition encryption, so I need to insert a password to decrypt my system partition to boot up my OS, is this unsecure and can it be cracked with brute force if someone stole the lap… Continue reading Is it unsecure to use only a passphrase in luks for whole system partition encryption?→

PAT vs. SSH – Why Bother with SSH?

Posted on July 16, 2022 by stk1234

Are there any advantages to using SSH keys vs. a PAT when interacting with a site like Github?
Github claims SSH keys are a way to not have to enter your username + password (personal access token) with every interaction, however, my Keych… Continue reading PAT vs. SSH – Why Bother with SSH?→

Auto-login (password stored on device) vs refresh token

Posted on July 7, 2022 by eightyfive

I’m asking myself what are the benefits of refresh token over saving the user password (securely) on user device and perform a transparent login (background) with its credentials to get a fresh new access token?
Note: you would have to “id… Continue reading Auto-login (password stored on device) vs refresh token→