In the midst of security breaches and privacy concerns, a lot of people still have weak passwords. One of the main reasons is that they choose passwords that are easy to remember, such as common phrases or simple numerical patterns, making it easier for hackers to guess them. Another reason is that many people use the same password for multiple accounts, which means that if one password is compromised, all of their accounts could be at risk. Additionally, people may not understand the importance of using strong passwords or the potential consequences of a security breach. Some people may also find it inconvenient to create and remember complex passwords, especially if they have multiple accounts that require different passwords.

NordPass evaluated 3TB of Data to Reveal 200 most common Passwords

NordPass, a password manager, recently released its latest report in preparation for World Password Day on May 4. The report evaluated over 3TB of data and confirmed the 200 most commonly used passwords in 30 countries and regions. The results were disappointing, as the report revealed that despite growing awareness about cybersecurity, people continue to use weak passwords to protect their accounts.

The top ten list of most commonly used passwords was particularly concerning. Eight of the passwords on the list could be easily cracked in less than one second. The most common password used was simply “password”. Other commonly used passwords included variations of numerical patterns and simple phrases that are easy to guess.

Experts in the field of cybersecurity have repeatedly emphasized the importance of using strong and unique passwords for different accounts. However, many people still prioritize convenience over security, using the same password across multiple accounts and choosing passwords that are easy to remember. It is important for individuals to prioritize strong password practices to protect their personal information from cyber threats. This includes using a combination of letters, numbers, and symbols, avoiding easily guessable patterns, and using different passwords for different accounts. As the NordPass report highlights, old habits die hard, but they must be broken to ensure the safety and security of personal information in the digital age.

RELATED:

• Apple Takes a Step Forward in Digital Security with Rapid Security Response Updates
• ChatGPT returns to Italy after addressing data privacy concerns
• Best Noise Cancelling Headphones 2023

(Via)

The post NordPass Report Exposes the Danger of Weak Passwords – Is Your Account at Risk? appeared first on Gizmochina.

Cybersecurity firm NortonLifeLock recently notified customers that hackers had gained access to their Norton Password Manager accounts. However, the company claimed that the attacks were not due to weak security on its systems, but rather due to vulnerabilities on other platforms.

This type of attack is known as a credential stuffing attack, where the attacker obtains data from other sources, such as compromised accounts on other platforms, in order to gain access to the intended target. In this case, Norton detected an unusually high number of failed login attempts on December 12 This usually indicates a credential stuffing attack. An internal investigation revealed that the attack began on December 1, with many accounts successfully compromised.

While the number of accounts affected has not been disclosed, a statement from Gen Digital, the parent company of NortonLifeLock, indicates that approximately 925,000 inactive and active accounts may have been targeted by the attack. Customers have been warned that attackers may have obtained details Stored in private vaults, this could lead to further compromises. The attackers may have also seen the account’s first name, last name, phone number and mailing address.

In response to this attack, Norton reset the passwords for affected accounts and took additional steps to protect against future attacks. The company also advises customers to enable two-factor authentication on their accounts and offers credit monitoring services.

The attack on NortonLifeLock is the latest known incident involving the password lock service. In December, LastPass confirmed a data breach in August involving name addresses and encrypted password data vaults. By late December, it was said that the vaults may have been Only $100.

RELATED:

• Netflix, Disney+, & Prime Video password sharing may soon be illegal in the UK
• Password Manager LastPass Confirms They Were Hacked This Month
• China Acquires Golden Shares in Alibaba: Next in line is Tencent
• Killer Drone on Netflix Set, Leaves Actor with Severe Injuries
• Redmi Note 12 5G Review: Reliable Midrange 5G Phone with 120Hz AMOLED Display

(via)

The post Norton Password Manager Faces Breach From Third-Party Platform appeared first on Gizmochina.

With more and more websites setting restrictions on the passwords you can use (ie it must have a capital letter, a unique symbol or your password must be 12 characters long), password managers such as Dashlane, KeePass, and 1Password have been gaining attraction among online users over the past 5 years.

One among the popular password managers, LastPass, reported in their official community blog post, that unfortunately their service was hacked this August 2022.

The report states that the team has determined that two weeks ago, an unauthorized party gained access to portions of the LastPass development environment through a single compromised developer account and took portions of source code and some proprietary LastPass technical information.

In response to the security incident, the company states that it has deployed containment and mitigation measures, and engaged with a leading cybersecurity and forensics firm. The investigation regarding LastPass’ security incident is still ongoing, and the company has notified its users that currently there is no evidence that this incident involved any access to customer data or encrypted password vaults. 

LastPass’ products and services are operating normally, and with regard to the incident, the company has also implemented additional enhanced security measures and is evaluating further mitigation techniques to strengthen the cybersecurity environment.

Lastly, LastPass informs users that none of its users’ Master passwords have been compromised. LastPass says that it never stores or has knowledge of its users’ Master Passwords. The password manager utilizes an industry-standard Zero Knowledge architecture that ensures LastPass can never know or gain access to their customers’ Master Password.

RELATED:

• Netflix could launch ad-supported plan and password sharing fees this year
• iQOO 10, iQOO 10 Pro with Snapdragon 8+ Gen 1 goes on sale in China, starts at 3,699 Yuan (~$548)
• Huawei Launches the Freebuds Pro 2, its Latest Premium Wireless ANC Earphones, in Malaysia
• Oppo Enco Buds 2 Launched with 28-Hour Battery Life & 10mm Titanum Driver
• Giztop is giving $100 OFF on Xiaomi 12S Pro Smartphone

(Source)

The post Password Manager LastPass Confirms They Were Hacked This Month appeared first on Gizmochina.