Password Authentication

Evernote discloses password breach, while critics bemoan its use of crackable crypto

Evernote discloses password breach, while critics bemoan its use of crackable crypto By

The company advised its 50 million users on Saturday that it "detected and blocked suspicious activity on the Evernote network that appears to have been a coordinated attempt to access secure areas" of its service.

Passwords of 100k IEEE members lie bare on FTP server

By

A Romanian researcher has discovered a major password breach on the FTP site belonging to the IEEE. He blames a misconfigured server, as well as the sloppy practice of storing passwords on log files.

Password security can improve, but the hackers will still get in

Password security can improve, but the hackers will still get in

Considering the endless march of breaches, it may be time to scrap the belief that adequate passwords -- or even passphrases -- can prevent hackers from breaking into corporate environments. Instead, security pros should focus their efforts on gaining visibility into their networks.

Opinion: The password is dead

Opinion: The password is dead

The massive fallout from the breaches of Gawker, Sony and others involving weak password authentication schemes show that the current password system is dead.

Sign up for our newsletters

POLL