A Timeline of Net Neutrality in the United States and What It All Means
December 19, 2017
Digital Security Lessons Learned in 2017
December 28, 2017
Welcome back to ‘This Week in Getting Hacked’—the world’s greatest cybersecurity-related link dump! Each week, we bring you the best news stories from the cybersecurity field, letting you know who’s getting hacked, who’s hacking, what data is leaking, and about what you should take with caution. So strap in, change your password, and let’s find out who’s getting hacked this week!
On to the links…
The password manager on Windows 10 is a fantastic way to steal your password. Sigh. A program called keeper, which is installed by default can apparently allow any website to steal any password. Great. Travis Ormandy, a Google researcher, said this about the bug:
Allegedly, the developers of Keeper have issued a patch to fix this problem, which is good, but still. How does this happen?
The sensational headline will be to tell you that every single household in the United States has been exposed to a hack due to a massive leak. But in reality, it’s probably only 123 million Americans across billions of data points. So, nothing to worry about.
According to Infosecurity Magazine, this hack is comparable to the Equifax incident of earlier this year only because it affects nearly every household.
This time it’s (another) cloud storage “misconfiguration” which has exposed personally identifiable information (PII).
UpGuard Cyber Risk uncovered a data repository containing data from Alteryx which is a cloud-based data analytics firm. Alteryx is a partner of Experian, a consumer credit reporting agency (read: Equifax’s competitor). Oh geez. Credit companies need to get it together. For more information, please watch the following video from CNET:
Too many people are still using “Password” as their password in 2017. So basically, nothing’s really changed. Somehow “SplashData” scraped a bunch of passwords (that won’t come back to bite them anytime soon).
Over five million passwords were used in the survey and SplashData estimates that 10 percent of people (mostly in North American and Western Europe not surprisingly) are using at least one of the 25 worst passwords with 3 percent using the worst password.
Here’s the complete list:
- 123456
- Password
- 12345678
- qwerty
- 12345
- 123456789
- letmein
- 1234567
- football
- iloveyou
- admin
- welcome
- monkey
- login
- abc123
- starwars
- 123123
- dragon
- passw0rd
- master
- hello
- freedom
- whatever
- qazwsx
- trustno1
My favorite is just “whatever,” with trustno1 also cracking me up. I have to change my passw0rd from “dragon,” to something a little harder to guess, and I suggest you do the same.
That’s it for this week. Stay safe out there and remember to change your password!
