National Data Center Breach Traced to Weak Password: 'Admin#1234'
The password used by the PDNS 2 administrator was alarmingly weak and easily guessable: “Admin#1234.”
How To Generate A Strong Password
There are four unique characteristics of a strong password:
- Password Length – You’ll want to always have a password that’s at least 12 characters.
- Mixed Case – You’ll want to include both upper and lower case characters throughout.
- Numbers – You’ll want to include numbers in your password.
- Special Characters – You’ll want to include special characters in your password.
Password Best Practices
- Two-Factor Authentication (2FA) – virtually every platform now offers a means for you to use a password in combination either biometric data, a PIN or security question or pattern, or a real-time code that’s generated by email, by text message, or with an authenticator app.
- Password Vault – If you’re on an Apple device, you can store all of your passwords securely in iCloud. This is a fantastic way to manage passwords because you can pick a strong, unique password for every service you have but you don’t have to remember them. Just use Safari and your Apple device will pre-fill the passwords. An alternative on Google is to use Google Chrome as your browser. As long as you’re logged into Google on your browser, your passwords are available across any device you’re logged into Google with.
- Password Apps – Mobile and desktop applications like 1Password, Dashlane, LastPass, or Roboform allow you to store every password securely in their platform. They have browser plugins and mobile apps to help you retrieve them or pre-fill password fields. Another nice feature of these platforms is that they typically have an emergency contact that can gain access to your passwords in the event of an emergency.
- Suggested Passwords – Password vaults and applications offer suggested passwords that are difficult to guess either manually or programmatically. I would encourage you to always use and store a suggested password rather than writing your own.
- Don’t Share – Do not share your password with anyone. As a business, you should be utilizing enterprise platforms that enable you to create users who have limited access with their own passwords.
- Change Your Passwords – Periodically changing your passwords can help increase their strength and protect your accounts. Some security experts recommend changing your passwords every few months or so.
Disclosure: We are using affiliate links to promote other services on this page.
Latest Password and Data Breach News
200+ PC Models Compromised Due to Weak BIOS Passwords
Many PC models from top brands have faced security breaches due to a weak BIOS password. Researchers from Binarly (thanks Ars Technica), a security firm, revealed that the Secure Boot system, which ensures only trusted software boots up a device, was compromised on over 200 models. These models include those from Acer, Dell, Gigabyte, Intel, and Supermicro. Cryptographic Key Protected by Weak Password The root cause of this breach was a cryptographic key protected by just a four-letter password. This key is crucial for Secure Boot and is used by multiple manufacturers. The key was leaked online, leading to a
The Best Password Manager Extension for Chrome in 2024
If you’re looking for the best password manager extension to replace the Chrome password manager, here are our top five recommendations.
ERP Provider Exposes 769 Million Records, Including API Keys And Email Addresses
A massive data breach involving ClickBalance, one of Mexico's largest Enterprise Resource Planning (ERP) technology providers,
Partnering with the Pros: “Cyber Security, Always on Guard”
WAYNESBORO- This is Part 5 of a 6 part interview by Samantha Wolfe of the Law Offices of Samantha K. Wolfe LLC, with Cermak Technologies, Inc. owner Mike Cermak, Jr. The interview is lightly edited. Sam: I
How to Securely Onboard New Employees Without Sharing Temporary Passwords
Secure employee onboarding by eliminating temporary passwords. Discover how Specops' First Day Password enhances cybersecurity from day one.
Major Tunisian internet provider leaks data of nearly half a million customers
A massive leak has exposed clients' data and employees' passwords, raising concerns over targeted attacks after the main internet provider in Tunisia failed to set up a password.
RockYou2024 Exposes Nearly 10 Billion Unique Passwords
In a significant security breach, nearly 10 billion unique passwords have been leaked on a widely recognized cyber forum. This unprecedented release of passwords, dubbed "rockyou2024.txt," has been sourced from decades of data breaches and poses a substantial risk for future cyberattacks. The RockYou2024 database, which contains almost 10 billion…
Billions left vulnerable after historic data breach, and other cybersecurity news to know this month
Top cybersecurity news: 10 billion passwords leaked in historic data breach; Insurers fear AI disruptions at Paris Olympics; US increases cybersecurity spend.
Fractal ID’s Data Breach Linked to 2022 Password Reuse Incident
Fractal ID, a blockchain identity verification platform, recently published a detailed postmortem on a data breach that compromised user information. The breach occurred on July 14, 2024, but its origins can be traced back to an earlier incident in 2022 involving the reuse of a compromised password by an employee. Analysis of the Breach The […]
Fractal ID postmortem ties breach to 2022 password hack
Fractal ID’s postmortem reveals a data breach on July 14, traced to a 2022 employee password reuse hack. The breach affected 6,300 users, leading to enhanced security measures and ongoing monitoring.
Fractal ID data breach traced to 2022 hack of employee who reused password
The company has acknowledged that the personal details of 6,300 users, representing .5% of its database, were stolen in a recent data breach.