Worst Password Blunders of 2018 Hit Organizations East and West

  /     /     /  
Publicated : 23/11/2024   Category : security


Worst Password Blunders of 2018 Hit Organizations East and West


Good password practices remain elusive as Dashlanes latest list of the worst password blunders can attest.



When it comes to security, there are many things humans do badly. A new end-of-the-year list provides a new batch of evidence that passwords are among the worst.
The Worst Password Offenders of 2018, assembled by password management vendor Dashlane, goes from the ridiculous to the horrifying.
The No. 1 offender on the list is the former, Kanye West, who shared his password — 000000 — on television as he unlocked his iPhone to show the screen to President Trump during an Oval Office meeting.
The remainder of the top 10 offenders lean heavily toward government or quasi-government agencies, with the second offender one of the most worrying: the Pentagon. A Government Accountability Office (GAO) audit found that many system admin passwords could be guessed in as few as nine seconds, and ... software for multiple weapons systems was protected by default passwords, according to Dashlane. Those passwords, the GAO noted, could be found by anyone with a knowledge of the systems manufacturers and a working understanding of how Google works.
Unfortunately, changing the default password wouldnt make a huge difference, says Emmanuel Schalit, CEO of Dashlane. He notes that the most significant issue is a limitation of the human brain. The most important thing you can do as an individual is to never reuse passwords, he says. Always have a different password for every different service.
That reuse becomes challenging, Schalit explains, because the average consumer has 200 passwords, and its impossible to manage them all without technology to help manage the digital identity.
Other offenders on
the list
include Cambridge University, for exposing records of thousands of experimental subjects because a password was left in a Github repository, and Nutella, for suggesting that its Twitter followers use the word Nutella as their passwords as a helpful suggestion on National Password Day.
Some have promoted the use of two-factor authentication (2FA) as a way to reduce the impact of poor password hygiene. Schalit, too, says two factors should be used wherever possible, though its overall effectiveness is limited by two major factors. The first is that 2FA isnt available for many services, he points out.
Second, even where it is available, 2FA frequently uses SMS as part of the second factor, and ... it only costs a few dollars to buy the text messages of an individual, Schalit says.
Its important that individuals work to improve their digital practices, he adds, because the issues with secure digital identities go beyond personal finance. Its not an individual issue anymore — its a global issue, he says. Whenever one of us is breached or compromised, that doesnt just impact the individual. It starts to erode the very fabric of the Internet when it becomes too dangerous, too risky.
Related Content:
Highly Active Seedworm Group Hits IT Services, Governments
Windows 10 Security Questions Prove Easy for Attackers to Exploit
4 Lessons Die Hard Teaches About Combating Cyber Villains
Phishing Attacks Exceed 137 Million in Q3: Kaspersky Lab
10 Steps for Creating Strong Customer Authentication

Last News

▸ Some DLP Products Vulnerable to Security Holes ◂
Discovered: 23/12/2024
Category: security

▸ Scan suggests Heartbleed patches may not have been successful. ◂
Discovered: 23/12/2024
Category: security

▸ IoT Devices on Average Have 25 Vulnerabilities ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Worst Password Blunders of 2018 Hit Organizations East and West