I'm a sucker for password tools. Since signing on with Webware late last year, I've since amassed a collection of site log-ins the size of a pulp romance novel, and despite my youthful brain, remembering all of them is clearly impossible. A solution I've been using for some months is Roboform, which is a small piece of software that will let you keep your user names and passwords safely tucked away, combined with a browser plug-in that will automatically log you in to each site. This morning I've been playing around with a new feature from … Read more
Brace yourself for another fine example of the tech-savviness of federal bureaucrats (and yes, this sentence is dripping with sarcasm).
According to a report released Friday (PDF) by the Treasury Department's inspector general, 60 percent of a sampling of 102 Internal Revenue Service employees, when contacted by government auditors posing as help-desk employees, were perfectly willing to reveal their usernames and change their passwords to ones suggested by the callers.
The auditors said they were particularly alarmed by this year's findings against the backdrop of a similar test in 2004, when only 35 percent fell for the trick. … Read more
One of the beauties of the iPhone is its supposed near-ubiquitous access to a huge amount of your personal information from one access point. Think about it: your contacts, text messages, e-mails, music, photos, stock portfolios and bookmarks, even to what you're doing and when, are all in your hand or pocket.
Over iced tea on a sunny day in San Francisco, a friend who is quite the entrepreneur noted that if you ever, god forbid, dropped your iPhone or lost it, or if it should get stolen, the next person who picked it up would have access to … Read more
If you ever wanted to be Nevada's governor for a day, it doesn't seem to be that hard.
In what could be a whopping security hole, Nevada has posted the password to the gubernatorial e-mail account on its official state Web site. It appears in a Microsoft Word file giving step-by-step instructions on how aides should send out the governor's weekly e-mail updates, which has, as a second file shows, 13,105 subscribers.
The Outlook username is, by the way, "governor" and the password is "kennyc". We should note at this point that … Read more
With the weather getting warmer, Power Downloader decided that it was time to get away from his computer and take a little vacation with his niece, Kitty Kilobyte. Of course, the thing he worries about the most when leaving the Power Lair unattended is some would-be criminal getting in and stealing his top-secret documents.
Power Downloader is especially concerned about certain items on his desktop, which need to remain top secret when he and Kitty Kilobyte go on vacation. His plans for thwarting villains, programs that map secret locations, layouts of evil lairs, or other top-secret stuff could mean disaster if they get into the wrong hands.… Read more
According to a post Monday on the Washington Post's "Security Fix" blog, AOL's password system may not be quite as secure as it would have you believe. A tipster e-mailed blog author Brian Krebs to say that even though AOL allows your password to be 16 characters long, it only counts the first eight. This could spell bad news for AOL members who might not choose their passwords wisely--namely, those who might include their usernames in them.
"Let's take a fictional AOL user named Bob Jones, who signs up with AOL using the user … Read more
Security experts have warned that password recovery tools for OpenOffice, the open-source application suite, are vulnerable to abuse.
The release of version 1.0.4 of Intelore's OpenOffice Password Recovery software on Thursday allows IT managers and systems administrators to recover OpenOffice passwords and discard formatting and editing restrictions--for example, locked cell protection and permissions. The software allows password recovery through brute force and dictionary-based attacks, or a combination of both.
One of the companies presenting at the Web 2.0 Expo Launchpad sessions on Tuesday is the very strange security company, Vidoop. This firm makes a system that replaces passwords with pictures. It's quite ingenious, and much more secure than standard, hackable, or keyboard-loggable passwords.
When you want to sign on to a Vidoop-protected site, you're shown a grid of pictures, each of which has a letter stamped on top of it. Your job is to select the pictures in the categories that you've selected as your password. For example, if you've selected car, boat, plane … Read more
Gone may be the days of remembering passwords or scanning your fingerprint to log on to your PC. If NecSoft's new authentication software catches on, all you'll need is your face.
The NecSoft BiodeLogon system uses a Webcam to take your mugshot, then matches it up to your assigned user photo. If it's a match, you're logged in. So if you need to change your password, just get a haircut or pierce your nose.
Sounds easy...maybe too easy. If you have an identical twin, can they access your PC? What if you're just not … Read more
Devicescape is a free Wi-Fi helper service that was announced at the Demo 07 conference this past week. It's designed to take the struggle out of connecting to various commercial Wi-Fi hot spots while on the go. After downloading the low profile Devicescape application to your PC, Windows Mobile smart phone, or Wi-Fi-enabled handset, you can instantly connect without having to manage log-ins or remember passwords.
The Devicescape client works with a number of Wi-Fi services, most notably T-Mobile's HotSpot service, which can be found in over 8,000 locations (mostly Starbucks). Devicescape is at work on interoperability … Read more