Wordfence WordPress Plugin Checks for Pwned Passwords

ByMike McBride Reading Time: 1 minute

With the recent release of Have I been pwned version 2.0 I’ve seen a lo of articles talking about using the tools to check and see if that oh so clever password you came up with is actually so unique or if it’s appears in a data breach before. There’s also been some talk of various tools that might check that for you, perhaps having it built into password managers like 1Password, for example.

Last night I also noticed another useful place where a plugin is checking the account password you use to login to a WordPress install, and forcing a password reset if it’s found in the breached data. (Yes, I found this out when it forced a reset on one of my blogs, but I’m cool with that. Happy to have help staying safe! Obviously what I thought was a random password, was found elsewhere!)

Anyway, the plugin in question is a security plugin called Wordfence. In the chagelog for their Mar. 1 update, there’s this little nugget:

Improvement: Added a new feature to prevent attackers from successfully logging in to admin accounts whose passwords have been in data breaches.

Nice.

Similar Posts

|

SEO Question

ByMike McBride Reading Time: 2 minutes

So, if there are any SEO “experts” out there willing to answer a question for me, I’m seeing some really odd Google behavior from one of my sites. The site in question is www.childabusesurvivor.net. The problem is this. Once upon a time my site was in the top three hits on Google for “child abuse…

Blogtrack Fix

ByMike McBride Reading Time: 1 minute

Jevon, from blogtrack.com is working on a fix as we speak. Of course since I have lost the ability to ftp to my own domain, I don’t know when anyone will actually get this update! And the hosting company was doing so well there for awhile..tsk tsk. Update: according to their site news, the security…

Password policy

ByMike McBride Reading Time: 2 minutes

After my experiences today I’m reconsidering the way I look at password policies. I had to go around and install the new drivers for that Canon copier/printer today on about 15 machines. The install involved installing the Canon LPR port, installing the print driver, restarting, and then entering the Department ID information for the print…

Linked – Blame the Echo Chamber on Facebook. But Blame Yourself, Too
|

Linked – Blame the Echo Chamber on Facebook. But Blame Yourself, Too

ByMike McBride Reading Time: 1 minute

  In The Big Sort, Bill Bishop shows how, over the last 30 years, Americans have sorted themselves into like-minded neighborhoods. The same appears to be happening on the web. All the empirical research to date suggests that the reason is not the use of personalization algorithms per se. Algorithms can easily expose us to…

Links, links and more links!

ByMike McBride Reading Time: 1 minute

Things I’m looking at more closely: Hackers Manipulating Internet Explorer Add-Ons Apparently, there is going to be an MT-Blacklist compatible with Movable Type 3.0 I’m still not completely convinced that I’ll be updating the child abuse blog to 3.0, but it’s nice to know I can take my favorite tool with me if I do,…

Phishing Infographic

ByMike McBride Reading Time: 1 minute

Picked this up from Digital Guardian, and really there’s a lot of good things to remind people about, whether it be email, phone calls, or social media phishing attempts, so I’m sharing it here too. If you want a printed version for your office, you can get one from their website.   Infographic by Digital…

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.