article thumbnail

When Accounts are "Hacked" Due to Poor Passwords, Victims Must Share the Blame

Troy Hunt

I just can't wrap my head around why anyone would think that people should be able to take whatever shortcuts they want with their personal security and somehow, magically, have absolutely no responsibility whatsoever for the outcome.

Passwords 236
article thumbnail

Relax. Internet password books are OK

Malwarebytes

Passwords are a hot topic on social media at the moment, due to the re-emergence of a discussion about good password management practices. There’s a wealth of password management options available, some more desirable than others. The primary recommendation online is usually a software-based management tool.

Passwords 130
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

National Cybersecurity Awareness Month – What it Really Means for WordPress Users

SiteLock

If you’re not taking your personal security seriously at every level, that misstep might allow others to gain access to your personal information (like your website login details), and act maliciously to spread their negative results to others. Simple Security Steps to Implement Today. WordPress starts with people.

article thumbnail

No, Spotify Wasn't Hacked

Troy Hunt

Instead, they need to look inwardly and adjust their own security practices instead. Get a password manager (8 years on and I still use 1Password every day), create strong and unique passwords on every account and enable 2-factor authentication where available.

Hacking 223
article thumbnail

GUEST ESSAY: Until we eliminate passwords, follow these 4 sure steps to password hygiene

The Last Watchdog

Two-factor authentication may seem technically complicated, but “2FA” is a security measure you already know. Anytime a website sends you an SMS code or asks a personal security question, that’s a form of 2FA. 4) Use a password manager.

Passwords 241
article thumbnail

The 773 Million Record "Collection #1" Data Breach

Troy Hunt

The same anonymity model is used (neither 1Password nor HIBP ever see your actual password) and it enables bulk checking all in one go. Get a Password Manager You have too many passwords to remember, you know they're not meant to be predictable and you also know they're not meant to be reused across different services.

article thumbnail

The 42M Record kayo.moe Credential Stuffing Data

Troy Hunt

If you are, get a password manager ( I use 1Password ). To be honest, if your personal security practices are up to scratch (password manager plus 2FA), this is a bit of a non-event. In short, this is another one of those awareness incidents.

Passwords 156