9 Best Articles in 2022
Guardian Tech
RIP passwords: new web standard designed to replace login method
Guardian Tech
3 min read · From 2018 · WebAuthn will eliminate need for passwords by moving to methods of authentication such as biometrics, says web standards controller
ncsc.gov.uk
Let them paste passwords
ncsc.gov.uk
6 min read · From 2017 · Allow your website to accept pasted passwords - it makes your site more secure, not less.
HackerNoon
I’m harvesting credit card numbers and passwords from your site. Here’s how.
HackerNoon
~12 min read · From 2018 · The following is a true story. Or maybe it’s just based on a true story. Perhaps it’s not true at all.
Troy Hunt
Passwords Evolved: Authentication Guidance for the Modern Era
Troy Hunt
~18 min read · From 2017 · In the beginning, things were simple: you had two strings (a username and a password) and if someone knew both of them, they could log in. Easy. But the ecosystem in which they were used was simple…
Troy Hunt
I've Just Launched "Pwned Passwords" V2 With Half a Billion Passwords for Download
Troy Hunt
20+ min read · From 2018 · Last August, I launched a little feature within Have I Been Pwned (HIBP) I called Pwned Passwords. This was a list of 320 million passwords from a range of different data breaches which organisations…
DEV Community 👩💻👨💻
How to Process Passwords as a Software Developer
DEV Community 👩💻👨💻
2 min read · From 2019 · Passwords are still the primary method of authentication today, in a form of some...
bleepingcomputer.com
LastPass users warned their master passwords are compromised
bleepingcomputer.com
2 min read · 2021-12-28 · Many LastPass users report that their master passwords have been compromised after receiving email warnings that someone tried to use them to log into their accounts from unknown locations.
Facebook Newsroom
Keeping Passwords Secure
Facebook Newsroom
2 min read · From 2019 · As part of a routine security review in January, we found that some user passwords were being stored in a readable format within our internal data storage systems. We have fixed these issues and as a…
The New York Times
Lost Passwords Lock Millionaires Out of Their Bitcoin Fortunes
The New York Times
6 min read · 2021-01-12 · Bitcoin owners are getting rich because the cryptocurrency has soared. But what happens when you can’t access that wealth because you forgot the password to your digital wallet?
Trending
bleepingcomputer.com
LastPass users warned their master passwords are compromised
bleepingcomputer.com
2 min read · 2021-12-28 · Many LastPass users report that their master passwords have been compromised after receiving email warnings that someone tried to use them to log into their accounts from unknown locations.
blog.kraken.com
Your Fingerprint Can Be Hacked For $5. Here’s How.
blog.kraken.com
2 min read · 2021-11-22 · Fingerprint authentication is a convenient alternative to passwords and PIN codes. Who wants to spend time typing in a lengthy string of numbers, letters and characters when a simple tap will suffice?…
bleepingcomputer.com
UK govt shares 585 million passwords with Have I Been Pwned
bleepingcomputer.com
1 min read · 2021-12-20 · The United Kingdom's National Crime Agency has contributed more than 585 million passwords to the Have I Been Pwned service that lets users check if their login information has leaked online.
BBC News (World)
UK donates 225 million stolen passwords to hack-checking site
BBC News (World)
2 min read · 2021-12-20 · The National Crime Agency hands over 225 million stolen passwords to a hack-checking site.
More like this
WIRED
Facebook Stored Millions of Passwords in Plaintext—Change Yours Now
WIRED
4 min read · From 2019 · The social network kept hundreds of millions of user passwords unscrambled, and employees could search them.
github.com
beurtschipper/Depix
github.com
2020-12-06 · Recovers passwords from pixelized screenshots. Contribute to beurtschipper/Depix development by creating an account on GitHub.
The Washington Post
Nearly 25,000 email addresses and passwords allegedly from NIH, WHO, Gates Foundation and others are dumped online
The Washington Post
2020-04-22 · Thousands of alleged email addresses and passwords linked to prominent organizations battling the coronavirus pandemic have been dumped on the Internet, where they almost immediately were used to foment hacking attempts and harassment by far-right extremists.
The Verge
Google is making it easier to check if your passwords have been compromised in a data breach
The Verge
3 min read · From 2019 · Google also checks for reused and weak passwords.
Ars Technica
This 11-year-old is selling cryptographically secure passwords for $2 each
Ars Technica
3 min read · From 2015 · Girl makes Diceware passwords, rolled with real dice, written by hand, sent by mail.
Dropbox
How Dropbox securely stores your passwords
Dropbox
3 min read · From 2016 · It’s universally acknowledged that it’s a bad idea to store plain-text passwords. If a database containing plain-text passwords is compromised, user accounts are in immediate danger.
Chrome Developers
Help users change passwords easily by adding a well-known URL for changing passwords
Chrome Developers
5 min read · 2020-08-31 · By redirecting requests to /.well-known/change-password to the change password URL, you can let users update their passwords easier than before.
haveibeenpwned.com
Have I been pwned? Pwned Passwords
haveibeenpwned.com
2 min read · From 2017 · Have I been pwned? allows you to search across multiple data breaches to see if your email addresses has been compromised.
Boing Boing
Discarded smart lightbulbs reveal your wifi passwords, stored in the clear
Boing Boing
2 min read · From 2019
Related topics
