Tag: passwords

LastPass gets acquired by remote desktop service LogMeIn

The popular password manager LastPass will soon have a new home at LogMeIn , which runs a remote desktop management service, the companies announced today . But don’t fret if you’re an existing LastPass user: LogMeIn says it’ll keep the service and brand alive, while also adding in technology from Meldium, another password service it recently acquired. The news comes amid a busy year for LastPass. Back in June, the company announced that it was hacked , and a few months ago it added free mobile password support . For the most part, the acquisition seems to be about making LogMeIn a more desirable choice for businesses who want to give employees a simple way to secure their many passwords, across a variety of online services. Via: The Next Web Source: LogMeIn

Continued here:
LastPass gets acquired by remote desktop service LogMeIn

Patreon Hacked, Personal Data Accessed

AmiMoJo writes: In a blog post Jake Conte, CEO and co-founder of Patreon, writes: “There was unauthorized access to registered names, email addresses, posts, and some shipping addresses. Additionally, some billing addresses that were added prior to 2014 were also accessed. We do not store full credit card numbers on our servers and no credit card numbers were compromised. Although accessed, all passwords, social security numbers and tax form information remain safely encrypted with a 2048-bit RSA key.” Read more of this story at Slashdot.

Read more here:
Patreon Hacked, Personal Data Accessed

Turns Out Ashley Madison’s Uncrackable Passwords Are Actually Very Crackable

It was little solace to victims of the Ashley Madison hack that the company had kept their passwords extra secure. Some even said the hashing algorithm was bulletproof. But—oops!—it turns out Ashley Madison made a programming error . And now, hobbyists have already deciphered over 11 million passwords from the leaked accounts. Read more…

See more here:
Turns Out Ashley Madison’s Uncrackable Passwords Are Actually Very Crackable

Mac keychain flaw can send your passwords to hackers via text

Antoine Vincent Jebara and Raja Rahbani have discovered a Mac Keychain vulnerability that hackers can easily exploit to steal passwords, certificates, etc. with very little user interaction needed. The duo stumbled upon the flaw while working on the Keychain for their identity management software Myki . They found out that attackers can craft commands that can make Mac’s password management system prompt users to click an “Allow button” instead of asking them to type in their passwords. Once a user clicks that button, the malicious code can forward Keychain’s contents via text, though the info could also be saved somewhere for download later on. The malware required to trigger that process can be introduced into the victim’s computer via innocuous files such as images, documents and spreadsheets. In fact, the proof of concept Rahbani and Jebara developed to test out what they discovered launches the malware-wrapped image in Preview after you click Allow. They designed it that way to show how that method can be used to allay any suspicion brewing in the back of the victim’s mind. In Jebara’s email to Engadget , he said they already notified Apple of the vulnerability and are waiting to hear back. He explained that they decided to come out with this information, because it could be extremely harmful to users if exploited. By knowing the flaw’s nature, you can at least protect yourself by not click strange buttons that pop up in Keychain. We disclosed because we feel that it is the right thing to do knowing that a vulnerability of this magnitude would have disastrous consequences (you wouldn’t be able to open any third-party file on your computer without the risk of losing all of your sensitive information until Apple issues a patch)… The vulnerability is extremely critical as it allows anyone to steal all of your passwords remotely by simply downloading a file that doesn’t look malicious at all and that can’t be detected by malware detectors because it doesn’t behave the way malware usually does. [Image credit: mangpages/Flickr ] Filed under: Misc , Apple Comments Tags: apple, keychain, security

See more here:
Mac keychain flaw can send your passwords to hackers via text

Intel delays next-gen chips as Moore’s law begins to crack

Intel says it’s next-gen ” Skylake ” will be delayed by six months, marking the second time in a row it hasn’t released a CPU on a two-year “Moore’s Law” cycle. That continues a trend, as last year’s 14-nanometer Broadwell chips were similarly delayed , and even Haswell and Ivy Bridge were behind schedule. Intel said that the setback for the new 10-nanometer chips was caused by the increasing complexity in building transistors that small. Addressing the elephant in the room, CEO Brian Krzanich said that “the last two technology transitions have signaled that our cadence today is closer to 2.5 years than two.” In other words, Moore’s Law needs a reboot. To address the lack of chips in the pipeline, Intel said that it’s going to release new 14-nanometer “Kaby Lake” chips based on the Skylake architecture. Krzanich said that “we expect that this addition to the roadmap will deliver new features and improved performance, and pave the way for a smooth transition to 10-nanometer.” Neverthless, he admitted that Intel is now on a “tick-tock-tick” cycle rather than a “tick-tock” as before. That bodes poorly for an already-struggling PC industry, as consumers will have less reason to get excited about new products. Intel also admitted that PC demand was weaker than expected, and expects it to get worse by year’s end. Nevertheless, it thinks the July 29 launch of Windows 10 will provide a tonic. “A lot of the really good features of Windows 10, things like Windows 10 Hello where you have facial log in, and you don’t have to use all your passwords, the Start screen… the touch usages of gaming, as the new games come to this product — those are going to run with PCs that have the latest features, ” Krzanich said. Despite the gloomy PC talk, Intel still managed to pull in a better-than-expected $13.2 billion for the quarter, thanks to a new focus on data centers, internet-of-things and memory. [Image credit: Getty images] Filed under: Peripherals , Intel Comments Source: Intel

More here:
Intel delays next-gen chips as Moore’s law begins to crack

Plex Hacked, Change Your Password Now

If you use the Plex media server for your movie and TV library, you’ll need to change your password this morning. The company announced it’s forum servers were hacked, leaving email addresses, forum messages, and hashed passwords vulnerable. Read more…

See original article:
Plex Hacked, Change Your Password Now

Oldest Twin Remains Found In Siberia

astroengine writes A team of Canadian and Russian researchers investigating an early Neolithic cemetery in Siberia have identified the world’s oldest set of human twins, buried with their young mother. The skeleton of the woman was exhumed in 1997 from a hunter-gatherer cemetery in south-eastern Siberia. Found with 15 marmot teeth — decorative accessories which were probably attached to clothing — the remains were photographed and labelled, but were not investigated by anthropologists. Now Angela Lieverse, a bioarchaeologist at the University of Saskatchewan, Canada, and colleagues Andrzej Weber from the University of Alberta, Canada, and Vladimir Bazaliiskii from Irkutsk University, Russia, have examined the skeleton and found remains of twin fetuses nestled between the pelvis and upper legs. The twins, about 36 to 40 weeks old, probably suffocated during their mother’s troubled labor nearly 8, 000 years ago. “This is not only one of the oldest archaeologically documented cases of death during childbirth, but also the earliest confirmed set of human twins in the world, ” Lieverse said. Read more of this story at Slashdot.

Originally posted here:
Oldest Twin Remains Found In Siberia

A Researcher Just Published 10 Million Real Passwords and Usernames 

Security consultant Mark Burnett has just published 10 million passwords along with their corresponding usernames. It’s a thoughtful offering to other researchers—but a legally risky move given the current legal situation surrounding hacking. Read more…

Follow this link:
A Researcher Just Published 10 Million Real Passwords and Usernames 

13,000 Passwords, Usernames Leaked For Major Commerce, Porn Sites

The Daily Dot reports that yesterday a “group claiming affiliation with the loose hacker collective Anonymous released a document containing approximately 13, 000 username-and-password combinations along with credit card numbers and expiration dates.” Most of the sites listed are distinctly NSFW, among other places, but the list includes some of the largest retailers, too, notably Amazon and Wal-Mart. Read more of this story at Slashdot.

See the original post:
13,000 Passwords, Usernames Leaked For Major Commerce, Porn Sites