blog trackingRealtime Web Statistics password Archives - Gregory D. Evans | Worlds No. 1 Security Consultant

Posts Tagged ‘password’

Wi-Fi flaw gives up your password

Wi-Fi flaw gives up your password



Swiss security researcher Dominique Bongard said many popular routers’ computer chips use a “random number generator” intended to safeguard your password — but it turns out those “random” numbers aren’t as random as they’re supposed to be. Some are so […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Wi-Fi flaw gives up your password appeared first on National Cyber Security.

View full post on National Cyber Security

Critical Vulnerability and Privacy LoopHole Found in RoboForm Password Manager

Unless you are a human supercomputer, remembering password is not so easy, and that too if you have a different password for each site. But luckily to make the whole process very easy, there is a growing market out there for password managers and lockers with extra layers of security. Read More….

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

View full post on National Cyber Security

Oops… Popular Password Managers Are Not As Secure As You Think

Just few days ago, we reported about two critical vulnerability in mobile version of the most popular password manager application from a popular Password management company RoboForm, which manages your passwords for different websites. Now, researchers have published a detailed explanation on the security vulnerabilities discovered in five different and popular password managers,

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

View full post on National Cyber Security

Password breakers are not that good!

We all used to think that password breakers are a good thing because you could forget your difficult passwords any time but it seems like that they could get malicious as well. Use of password cracking software can do disaster when this software gets mixed with the Trojan viruses. It’s been understood that when you can use them to solve your problem, you can also use them for the cyber attacks. Read More….

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Password breakers are not that good! appeared first on National Cyber Security.

View full post on National Cyber Security

Password bug exposed shoppers’ credit cards in eBay ProStores

http://www.ecommercebytes.com/cab/abn/y11/m06/i06/images/ebay_prostores.jpg 

Security research at Infosec claims he had found a serious bug in eBay ProStores that enabled him to see the cradit card details of the customers in plain text. Mark Litchfield, an infosec pro at Securatary, told he discovered a flaw in eBay-owned ProStores that not only opened the door to store account hijackers, but also leaked “full access to all their customers PII [Personally identifiable information] as well as their full credit information in clear text.”

 ProStores hosts online shops for eBay sellers to use to flog their stuff, and provides a wizard for creating the traders’ websites.

 Mark Litchfield said it was a very serious bug. I had reported it to eBay in Feb but it took them almost two months to fix it on March 20. He said that in order to gain control of a victim’s eBay ProStores site, the attacker must create her own ProStores account – there’s a handy 30-day free trial available – and then use that as a springboard to infiltrate the victim’s web bazaar.

 “In short, it was possible to change the password of another administrator, then you could log in as that user with full administrative access to the store,” Litchfied claimed. ” With this attack I guess I was more shocked than anything to find the credit card information being displayed back in clear text. If people are buying things online, why would the full card information need to returned in clear text to the administrator?”

View full post on Who Got Hacked – Latest Hacking News and Security Updates

Yahoo using ‘admin’ as username and password, leads to RCE

Behrouz Sadeghipour, a bug bounty hunter, has found a critical vulnerability in one of the subdomain of Yahoo(hk.yahoo.net) that allowed him to access admin panel. It is funny to know that the hk.yahoo.net is using ‘admin’ as username and password for its panel. After gaining access to the admin panel, he managed to upload his backdoor shell to the server.  Using the shell, he was able to delete or create any file or run any commands on the server. He was also able to control few other subdomains of Yahoo.  After getting notification from the researcher, Yahoo has patched the …continue reading

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Yahoo using ‘admin’ as username and password, leads to RCE appeared first on National Cyber Security.

View full post on National Cyber Security

Hackers delight: Worst password of the year goes to ‘123456’

The good news, for computer security experts: People are no longer using “password” as their top password for online files and site entry. The bad news: The new top password is equally unimaginative — “123456.” That’s according to an annual survey from SpashData, a mobile software developing company that collected and compiled lists of those commonly used passwords
[continue reading...]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

View full post on National Cyber Security

Beleth SSH Password Auditing Tool

Beleth is a fast multi-threaded SSH password auditing tool. It out performs Ncrack and THC-Hydra in speed. View full post on Cracker Files ≈ Packet Storm Read More….

View full post on The Cyber Wars

MorXBrute Password Cracker 1.01

MorXBrute is a customizable HTTP dictionary-based password cracking tool written in Perl. MorXBrute comes with a few payloads for some of the more popular software used and additionally lets you add your own payloads. MorXBrute supports both GET and POST brute forcing. View full post on Cracker Files ≈ Packet Storm Read More….

View full post on The Cyber Wars

Be Sure You’re Secure: Password Hygiene

  Nearly 73 percent of all Americans have fallen victim to some type of Internet crime in their lifetime, 9 million people were victims of identity theft last year and more than 600,000 Facebook accounts are hacked daily. Are you hiding under your bed right now like I am? Chances are most of us will get hacked
[continue reading...]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

View full post on National Cyber Security

Page 1 of 1212345»10...Last »

Get The New Book By Gregory Evans

Everyone Is Talking About!

Are You Hacker Proof?
$15.95

Find Out More, Click Here!