Accountability, Banking and Password Management

The Risk of Weak Online Banking Passwords

Krebs on Security

AUGUST 5, 2019

If you bank online and choose weak or re-used passwords, there’s a decent chance your account could be pilfered by cyberthieves — even if your bank offers multi-factor authentication as part of its login process. Image: Hold Security.

Banking

Banking Passwords Risk Accountability

A Password Manager Isn't Just for Christmas, It's for Life (So Here's 50% Off!)

Troy Hunt

DECEMBER 7, 2021

Change the password to one 1Password automatically generates c. Obviously, he still has a heap of accounts to set decent passwords on, but now he knows the pattern and he can repeat that over and over again. Login and have 1Password store the credentials b. Turn on 2FA and store the token in 1Password And that was it.

Passwords

Passwords Password Management Banking Accountability

Banks, Arbitrary Password Restrictions and Why They Don't Matter

Troy Hunt

SEPTEMBER 17, 2019

Allow me to be controversial for a moment: arbitrary password restrictions on banks such as short max lengths and disallowed characters don't matter. Also, allow me to argue with myself for a moment: banks shouldn't have these restrictions in place anyway. for my *online banking*. Any thoughts? 6 characters.

Banking

Banking Passwords Accountability Authentication

Sperm bank breach deposits data into hands of cybercriminals

Malwarebytes

MARCH 19, 2025

California Cryobank (CCB) is a sperm donation and cryopreservation firm and one of the US top sperm banks. The information potentially involved varies by customer but includes names and one or more of the following: Drivers license numbers Bank account and routing numbers. Change your password. Take your time.

Banking

Banking Data breaches Computers and Electronics Passwords

As Seen on Channel 5’s Vanessa (Feltz) Show: What to Do if You’re Targeted by a Scam

Jane Frankland

MAY 16, 2025

From AI-generated voices to realistic websites and stolen accounts, scams today are slick, fast, and global. Here’s a breakdown of the most widespread and damaging scams today: Impersonation Scams (51% of fraud cases) where fraudsters pose as: Banks, HMRC, DVLA, or government agencies. Couriers (e.g., Royal Mail, DHL, FedEx).

Scams

Scams Password Management Passwords Banking

68k Phishing Victims are Now Searchable in Have I Been Pwned, Courtesy of CERT Poland

Troy Hunt

AUGUST 30, 2023

The advice to impacted individuals is as follows: Get a digital password manager to help you make all passwords strong and unique If you've been reusing passwords, change them to strong and unique versions now, starting with the most important services you use Turn on multi-factor authentication wherever it's available, especially for important (..)

Phishing

Phishing Password Management Passwords Banking

Threat Modeling and Logins

Adam Shostack

JANUARY 2, 2025

Recently, I was opening a new bank account. The bank unexpectedly sent me a temporary password to sign up, and when I did, the temporary password had expired. But then, after I went to reset the password, the bank emailed me a one time code. The passwords I chose are unlikely to be better than toz*!Iikc@mpP8gD

Banking

Banking Passwords Password Management Authentication

Data From The Emotet Malware is Now Searchable in Have I Been Pwned, Courtesy of the FBI and NHTCU

Troy Hunt

APRIL 26, 2021

This strain of malware dates back as far as 2014 and it became a gateway into infected machines for other strains of malware ranging from banking trojans to credential stealers to ransomware. Change your email account password. Turn on 2 factor authentication wherever available. Keep operating systems and software patched.

Malware

Malware Passwords Banking Password Management

International law enforcement operation dismantled RedLine and Meta infostealers

Security Affairs

OCTOBER 29, 2024

Change passwords : After malware removal, update passwords for key accounts (email, banking, work, social media) and enable two-factor authentication. Use a password manager : Simplifies managing strong, unique passwords across accounts. payment info) may have been compromised.

Identity Theft

Identity Theft Passwords Malware Banking

Why we’re no longer doing April Fools’ Day

Malwarebytes

MARCH 31, 2025

Last year a burger restaurant sent customers into a spin after sending them a fake order confirmation email, which led to customers fearing that their accounts had been hacked. If your bank gives you an unexpected phone call, ring them back on a number you know is theirs. Use a different password for every account.

Scams

Scams Passwords Accountability Password Management

Man accused of using keylogger to spy on colleagues, log in to their personal accounts and watch them at home

Malwarebytes

APRIL 9, 2025

The lawsuit claims that this gave Bathula login credentials for the victims’ personal accounts and systems, including bank accounts, emails, home surveillance systems, Dropbox accounts, Google Drives, dating applications, Google Nests, and iCloud accounts. Use a password manager.

Accountability

Accountability Spyware Passwords Password Management

Top Unexpected Ways to Utilise a Password Manager for Enhanced Security and Organisation

IT Security Guru

JANUARY 22, 2024

Password managers have become integral tools for individuals and businesses alike. They are primarily known for securely saving and managing login credentials so users don’t have to remember them all or write them down, where they could be compromised.

Password Management

Password Management Passwords Banking Accountability

Phishing evolves beyond email to become latest Android app threat

Malwarebytes

FEBRUARY 11, 2025

They dont crack into password managers or spy on passwords entered for separate apps. With vigilance, safe behavior, and some extra support, you can avoid Android phishing apps and protect your accounts from cybercriminals. The requests are bogus and simply a method for harvesting passwords.

Phishing

Phishing Passwords Mobile Authentication

Stop Putting Your Accounts At Risk, and Start Using a Password Manager

The Hacker News

JULY 30, 2022

Image via Keeper Right Now, Get 30% Off Keeper, the Most Trusted Name in Password Management. In one way or another, almost every aspect of our lives is online, so it’s no surprise that hackers target everything from email accounts to banks to smart home devices, looking for vulnerabilities to exploit.

Password Management

Password Management Passwords Accountability Risk

Why & Where You Should You Plant Your Flag

Krebs on Security

AUGUST 12, 2020

Several stories here have highlighted the importance of creating accounts online tied to your various identity, financial and communications services before identity thieves do it for you. ” In short, although you may not be required to create online accounts to manage your affairs at your ISP, the U.S. .”

Accountability

Accountability Mobile Banking Passwords

10 Behaviors That Will Reduce Your Risk Online

Daniel Miessler

MAY 14, 2020

Use unique, strong passwords, and store them in a password manager. Many people get hacked from having guessable or previously compromised passwords. Good passwords are long, random, and unique to each account, which means it’s impossible for a human to manage them on their own.

Risk

Risk Passwords Password Management Accountability

Password manager hijacked to deliver malware in supply chain attack

Malwarebytes

APRIL 27, 2021

In the latest example of a supply chain attack, cybercriminals delivered malware to customers of the business password manager Passwordstate by breaching its developer’s networks and then deploying a fraudulent update last week, said Passwordstate’s maker, Click Studios.

Password Management

Password Management Passwords Malware Retail

Truist bank confirms data breach

Malwarebytes

JUNE 14, 2024

On Wednesday June 12, 2024, a well-known dark web data broker and cybercriminal acting under the name “Sp1d3r” offered a significant amount of data allegedly stolen from Truist Bank for sale. Truist is a US bank holding company and operates 2,781 branches in 15 states and Washington DC. Change your password.

Data breaches

Data breaches Banking Passwords Phishing

Bad Consumer Security Advice

Schneier on Security

DECEMBER 4, 2018

There are lots of articles about there telling people how to better secure their computers and online accounts. To remain anonymous and secure on the Internet, invest in a Virtual Private Network account, but remember, the bad guys are very smart, so by the time this column runs, they may have figured out a way to hack into a VPN.

Accountability

Accountability Passwords VPN Mobile

Mobile security matters: Protecting your phone from text scams

Webroot

MAY 9, 2025

Little do you know, clicking that link could open the door for scammers to steal your identity, empty your bank account, or even plant malicious software (malware) on your device. The goal is to get you to give up sensitive personal details that can be used to hack into your accounts, and they are alarmingly successful.

Scams

Scams Mobile Banking VPN

The 2021 State of the Auth Report: 2FA Climbs, While Password Managers and Biometrics Trend

Duo's Security Blog

SEPTEMBER 14, 2021

Other factors, such as push notifications and security keys, are more effective in preventing account takeovers. Of All Accounts, Users Perceive Banking as Most Important Respondents continue to have money on their mind, with 93% considering financial accounts the most important to secure, up from 85% in 2019.

Password Management

Password Management Passwords Authentication Accountability

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Webroot

MARCH 3, 2025

Common attacks to consumer protection Identity theft and fraud Some common types of identity theft and fraud include account takeover fraud , when criminals use stolen personal information such as account numbers, usernames, or passwords to hijack bank accounts, credit cards, and even email and social media accounts.

Consumer Protection

Consumer Protection Identity Theft Scams Social Engineering

UnitedHealth almost doubles victim numbers from massive Change Healthcare data breach

Malwarebytes

JANUARY 27, 2025

Billing, claims, and payment information: Claim numbers, account numbers, billing codes, payment card details, financial and banking information, payments made, and balances due. Change your password. You can make a stolen password useless to thieves by changing it. Better yet, let a password manager choose one for you.

Data breaches

Data breaches Healthcare Passwords Insurance

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. “If you have my seed phrase, you can copy and paste that into your wallet, and then you can see all my accounts. .

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

Ukraine Nabs Suspect in 773M Password ?Megabreach?

Krebs on Security

MAY 19, 2020

The SBU said they found on Sanix’s computer records showing he sold databases with “logins and passwords to e-mail boxes, PIN codes for bank cards, e-wallets of cryptocurrencies, PayPal accounts, and information about computers hacked for further use in botnets and for organizing distributed denial-of-service (DDoS) attacks.”

Passwords

Passwords Accountability Hacking Password Management

The Life Cycle of a Breached Database

Krebs on Security

JULY 29, 2021

The messages addressed customers by name and referenced past order numbers and payment amounts tied to each account. The emails encouraged recipients to click a link to accept the cash back offer, and the link went to a look-alike domain that requested bank information. Don’t re-use passwords. customers this month.

Passwords

Passwords Password Management Phishing Scams

Experian, You Have Some Explaining to Do

Krebs on Security

JULY 10, 2022

Twice in the past month KrebsOnSecurity has heard from readers who’ve had their accounts at big-three credit bureau Experian hacked and updated with a new email address that wasn’t theirs. In both cases the readers used password managers to select strong, unique passwords for their Experian accounts.

Accountability

Accountability Passwords Authentication Password Management

8 Ways to Protect Yourself against Scams on Black Friday and Cyber Monday

Adam Levin

NOVEMBER 23, 2020

Scammers who use “phishing” emails (it looks like it’s from a brand you know, but it’s not) will include a link to a fake website where they’ll ask for your banking or other personal information. Keep a close eye on your accounts. Change your passwords. Still, it’s important to be wary. …and don’t open that attachment.

Scams

Scams Banking Retail Consumer Protection

Protecting Yourself from Identity Theft

Schneier on Security

MAY 6, 2019

Enable two-factor authentication for all important accounts whenever possible. Don't reuse passwords for anything important -- and get a password manager to remember them all. Watch your credit reports and your bank accounts for suspicious activity.

Identity Theft

Identity Theft Passwords Password Management Authentication

City of Columbus breach affects around half a million citizens

Malwarebytes

NOVEMBER 4, 2024

Change your password. You can make a stolen password useless to thieves by changing it. Choose a strong password that you don’t use for anything else. Better yet, let a password manager choose one for you. Some forms of two-factor authentication (2FA) can be phished just as easily as a password.

Data breaches

Data breaches Passwords Ransomware Phishing

Identity Management Day: Safeguarding your digital identity

Webroot

APRIL 4, 2025

Imagine waking up one day to find that someone has stolen your identity, opened credit cards in your name, or even withdrawn money from your bank accounts. That way if one of your passwords is leaked, hackers wont be able to use it to access any of your other accounts. Thats where a password manager comes in.

Identity Theft

Identity Theft Banking Password Management Passwords

Plant Your Flag, Mark Your Territory

Krebs on Security

JUNE 28, 2018

Many people, particularly older folks, proudly declare they avoid using the Web to manage various accounts tied to their personal and financial data — including everything from utilities and mobile phones to retirement benefits and online banking services. Postal Service or the Social Security Administration.

Banking

Banking Accountability Mobile Media

MY TAKE: Businesses gravitate to ‘passwordless’ authentication — widespread consumer use up next

The Last Watchdog

MAY 24, 2022

Fortifications, such as multi-factor authentication (MFA) and password managers, proved to be mere speed bumps. No small part of the problem is that passwords and MFA require a significant amount of human interaction. One bank in the U.S. Threat actors now routinely bypass these second-layer security gates.

Authentication

Authentication Passwords Banking Digital transformation

4.7 million customers’ data accidentally leaked to Google by Blue Shield of California

Malwarebytes

APRIL 24, 2025

The leaked information includes various details such as the type of health insurance plan, postal code and city, gender, family size, account IDs, names of insured persons, and search queries related to finding a doctor, which could reveal members’ health concerns or needs. Change your password. Take your time.

Insurance

Insurance Data breaches Passwords Phishing

Federal Reserve “breached” data may actually belong to Evolve Bank

Malwarebytes

JUNE 26, 2024

A shockwave went through the financial world when ransomware group LockBit claimed to have breached the US Federal Reserve, the central banking system of the United States. The Reserve operates twelve banking districts around the country which oversee money distribution within their respective districts. And it’s a lot of data.

Banking

Banking Data breaches Passwords Ransomware

12 Online Resolutions for 2021

Adam Levin

DECEMBER 16, 2020

Don’t re-use passwords: Yes, keeping track of passwords for all of your accounts can be a chore, but using the same password means that one breached account can be used to others that use the same user credentials. If you’re having difficulty keeping track of passwords, consider using a password manager.

VPN

VPN Antivirus Passwords Backups

GUEST ESSAY: ‘World password day’ reminds us to embrace password security best practices

The Last Watchdog

MAY 26, 2021

We celebrated World Password Day on May 6, 2021. Related: Credential stuffing fuels account takeovers. Every year, the first Thursday in May serves as a reminder for us to take control of our personal password strategies. Passwords are now an expected and typical part of our data-driven online lives.

Passwords

Passwords Password Management Accountability Authentication

Level Up Your Security: Embrace Passkeys and Phishing-Resistant 2FA

Thales Cloud Protection & Licensing

JANUARY 31, 2025

As we celebrate Change Your Password Day on February 1st and 2FA Day on February 2nd, theres no better time to rethink and upgrade how we protect our digital lives. 2025 must be the year we adopt modern security practices, such as passkeys, phishing-resistant 2FA, and password managers, to ensure safer, stronger authentication for everyone.

Phishing

Phishing Passwords Password Management Authentication

Relationship broken up? Here’s how to separate your online accounts

Malwarebytes

SEPTEMBER 23, 2024

With couples today regularly sharing access to one another’s email accounts, streaming services, social media platforms, online photo albums, and more, the risk of a bad breakup isn’t just heartache. The use of multifactor/two-factor authentication on every sensitive account that allows it. The internet has made it harder.

Accountability

Accountability Passwords Media Banking

Macs targeted by info stealers in new era of cyberthreats

Malwarebytes

FEBRUARY 19, 2025

With stolen passwords, the impact is even broader; hackers could wire funds from a breached online banking account into their own, or masquerade as someone on social media to ask friends and family for money. But there is another threat to info stealers that comes from their recent history. They are wildly adaptable.

Malware

Malware Software Passwords Cryptocurrency

The danger of data breaches — what you really need to know

Webroot

APRIL 22, 2025

Financial services industry: Banks, insurance companies and other financial organizations offer a wealth of opportunity for hackers who can use stolen bank account and credit card information for their own financial gain. They can open accounts in your name, apply for loans, and even file false tax returns.

Data breaches

Data breaches Identity Theft Passwords Accountability

3 crucial security steps people should do, but don't

Malwarebytes

OCTOBER 17, 2023

Just 15 percent of people use a password manager. Just 35 percent of people have unique passwords for most or all of their accounts. Creating strong, unique passwords is simple enough, as any person can throw a cat at a keyboard and likely fulfill the password requirements for most online accounts.

Password Management

Password Management Passwords Antivirus Accountability

Affirm says Evolve Bank data breach also compromised some of its customers

Malwarebytes

JULY 3, 2024

‘Buy now, pay later’ payment specialist Affirm has warned that holders of its payment cards had their personal information exposed after a ransomware attack and data breach at Evolve Bank & Trust. Change your password. You can make a stolen password useless to thieves by changing it. Take your time.

Data breaches

Data breaches Banking Passwords Phishing

SHARED INTEL: A foolproof consumer’s guide to creating and managing bulletproof passwords

The Last Watchdog

MARCH 24, 2022

So many people use the same combination of username and password for every account. You see, these days, many data breaches could be traced back to people using the same password across multiple accounts. From there, it’s easy to reset the pass code for almost all of your accounts when the bad guy controls your email too.

Passwords

Passwords Password Management Banking Accountability

The Risk of Weak Online Banking Passwords

A Password Manager Isn't Just for Christmas, It's for Life (So Here's 50% Off!)

Trending Sources

Banks, Arbitrary Password Restrictions and Why They Don't Matter

Sperm bank breach deposits data into hands of cybercriminals

As Seen on Channel 5’s Vanessa (Feltz) Show: What to Do if You’re Targeted by a Scam

68k Phishing Victims are Now Searchable in Have I Been Pwned, Courtesy of CERT Poland

Threat Modeling and Logins

Data From The Emotet Malware is Now Searchable in Have I Been Pwned, Courtesy of the FBI and NHTCU

International law enforcement operation dismantled RedLine and Meta infostealers

Why we’re no longer doing April Fools’ Day

Man accused of using keylogger to spy on colleagues, log in to their personal accounts and watch them at home

Top Unexpected Ways to Utilise a Password Manager for Enhanced Security and Organisation

Phishing evolves beyond email to become latest Android app threat

Stop Putting Your Accounts At Risk, and Start Using a Password Manager

Why & Where You Should You Plant Your Flag

10 Behaviors That Will Reduce Your Risk Online

Password manager hijacked to deliver malware in supply chain attack

Truist bank confirms data breach

Bad Consumer Security Advice

Mobile security matters: Protecting your phone from text scams

The 2021 State of the Auth Report: 2FA Climbs, While Password Managers and Biometrics Trend

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

UnitedHealth almost doubles victim numbers from massive Change Healthcare data breach

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Ukraine Nabs Suspect in 773M Password ?Megabreach?

The Life Cycle of a Breached Database

Experian, You Have Some Explaining to Do

8 Ways to Protect Yourself against Scams on Black Friday and Cyber Monday

Protecting Yourself from Identity Theft

City of Columbus breach affects around half a million citizens

Identity Management Day: Safeguarding your digital identity

Plant Your Flag, Mark Your Territory

MY TAKE: Businesses gravitate to ‘passwordless’ authentication — widespread consumer use up next

4.7 million customers’ data accidentally leaked to Google by Blue Shield of California

Federal Reserve “breached” data may actually belong to Evolve Bank

12 Online Resolutions for 2021

GUEST ESSAY: ‘World password day’ reminds us to embrace password security best practices

Level Up Your Security: Embrace Passkeys and Phishing-Resistant 2FA

Relationship broken up? Here’s how to separate your online accounts

Macs targeted by info stealers in new era of cyberthreats

The danger of data breaches — what you really need to know

3 crucial security steps people should do, but don't

Affirm says Evolve Bank data breach also compromised some of its customers

SHARED INTEL: A foolproof consumer’s guide to creating and managing bulletproof passwords

Stay Connected