Data breaches are a huge and growing cybersecurity issue which affects pretty much everyone who lives in modern society. Just recently I wrote about a 41GB dump file database with 1.4 billion credentials acquired from 252 data breach incidents. The impact of data breaches and how they affect web security are staggering. We’re basically all compromised.
I have a confession to make: I use passwords for my various online services which are very difficult to crack, but I do reuse some passwords for multiple accounts. It’s my worst security habit. It’s also a habit that millions of people engage in because it can be overwhelming to have to remember a unique password for each and every online service we have.
I alone have accounts with Google, Twitter, LinkedIn, Netflix, Funimation, PlayStation, Peerlyst, Steam, and Medium. And there are definitely many other accounts that I have which I can’t remember off the top of my head right now. I’m completely typical that way. You may have at least as many online accounts as I do, each with a username and password.
The problem is if one of my account passwords is leaked in a data breach, an attacker can try the same password with some of my other accounts and they’ll have access to those too. Cyber attackers know that a lot of us reuse passwords.
Joe DeBlasio, Stefan Savage, Geoffrey M. Voelker and Alex C. Snoeren from the University of California San Diego have an exciting research project named Tripwire, not to be confused with the cybersecurity solutions company that’s based in Portland, Oregon.
The researchers wrote the following in their report:
“While there are a range of vectors by which account credentials can be compromised—including phishing, brute force and malware— perhaps the most pernicious (Read more...)
This is a Security Bloggers Network syndicated blog post authored by Kim Crawley. Read the original post at: Cylance Blog