|

Linked – New botnet targets password recycling

ByMike McBride Reading Time: 1 minute

A new botnet has been discovered that takes login credentials from a less-secure site and tests them on banking and financial transactions sites, leaving users who reuse the same password across sites vulnerable to attack.

This isn’t good. Let’s try and not use the same password on multiple sites people, especially if it’s a site where you are handling private financial information!

This is a good reason to use a password management program.

The downside to that is that it become impossible to actually remember your password, and on the rare occasion that you can’t access a mobile device, and need it, you are kind of screwed. (Yeah, it happened to me, my iPhone got damaged and turned into a brick, and at the store the tech asked me for my AT&T account password. Yup, no real way to log in to my password manager and find it just then.)

So maybe a backup plan for that one password. 😉

https://thestack.com/security/2016/05/24/new-botnet-targets-password-recycling/

Similar Posts

  • |

    Over-Simplistic Scientific Intelligence

    ByMike McBride Reading Time: 5 minutes

    And this really brings me back to my point, that we do a poor job of truly understanding science, statistics and cause and effect. We believe that algorithms have all been well-thought out, and produce a “true” result, even when they are trying to predict something as unpredictable as what traffic will look like 20 years from now. We assume social science studies are giving us the “right” answer for how to educate people, or train them for the best outcomes, without considering what we are teaching them about the larger world. We assume that we can tweak one belief, or one thing, without human beings reacting to those changes in unpredictable ways, all the while thinking our one change will cause the reaction we DO predict.

    We assume a lot that should never be assumed. We over-simplify a world that actually has more influences than we can possibly account for, and assume that what is really a small statistical difference represents a universal truth.

    It doesn’t. There are no simple answers. It takes hard work, hard discussions, and lots of listening to figure out the best way forward. Don’t wait for AI to tell you what to do, it may be missing quite a bit.

  • |

    Linked: Making Work Safe for Mental Illness

    ByMike McBride Reading Time: 1 minute

    We’ve been talking about making the workplace “safe” for a number of years now. First, there were the obvious, physical safety issues, and then the focus on sexual harassment, then on to bullying, and diversity. It’s important. You simply don’t get the best results from employees who don’t feel safe.

    And yet, in a time when there is an increasing number of employees dealing with mental health issues, we also need to consider what we do to make sure they feel safe as well, for the same reasons. People who don’t feel safe, will not speak up, will not bring their best work to the table, and might just be looking for a safer work environment.

  • Kroll ESI Trends Survey

    ByMike McBride Reading Time: 1 minute

    Despite the fact that we’ve been talking about electronic discovery, and the FRCP were changed 4 years ago to account for eDiscovery, apparently things are still a mess out there in the real world, according to the 2010 ESI Trends Survey from Kroll: Seventy-seven percent of companies are not confident in the repeatability and defensibility…

  • Remote Desktop Connection with Dual Monitors

    ByMike McBride Reading Time: 1 minute

    It’s been around for awhile now, but I never knew about it. This approach does work, but it’s clunky, and I would imagine, cumbersome to support. Still, one of the biggest complaints I get from users trying to use Remote Desktop to review documents in Summation is the fact that they have to limit themselves…

  • |

    Linked – Worst Mistakes and Best Practices in Law Firm Cybersecurity Measures

    ByMike McBride Reading Time: 1 minute

    For law firms, I would guess that 1-2 are the most likely mistakes being made. What would you say? As for dumb mistakes to avoid, consider the following: 1. Do not keep unnecessary client data “just in case you need it someday.” 2. Do not forget to encrypt data. 3. Do not leave access paths…

One Comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

To respond on your own website, enter the URL of your response which should contain a link to this post's permalink URL. Your response will then appear (possibly after moderation) on this page. Want to update or remove your response? Update or delete your post and re-enter your post's URL again. (Find out more about Webmentions.)