Threat Post

Cryptographers Aim to Find New Password Hashing Algorithm

Passwords are the keys to our online identities, and as a result, they’re also near the top of the target list for attackers. There have been countless breaches in the last few years in which ...
Wired

A Popular Password Hashing Algorithm Starts Its Long Goodbye

When data breaches went from being an occasional threat to a persistent fact of life during the early 2010s, one question would come up again and again as victim organizations, cybersecurity ...
Ars Technica

Yes, “design flaw” in 1Password is a problem, just not for end users

Over the past 48 hours, Internet security forums have buzzed with news about a newly discovered technique that allows crackers to make an impressive 3 million guesses per second when trying to find ...
Dark Reading

Safely Storing User Passwords: Hashing vs. Encrypting

Over the past several months, we've seen major breaches exposing numerous usernames and passwords. The eBay and Adobe breaches impacted millions of accounts. Snapchat was compromised. With every ...
ZDNet

MD5 password scrambler 'no longer safe'

The original author of the MD5 password hash algorithmhas publicly declared his software end-of-life and is "no longer considered safe" to use on commercial websites. This comes only a day after a ...
Ars Technica

Long passwords are good, but too much length can be a DoS hazard

For more than a year, Ars has advised readers to use long, randomly generated passwords to protect their digital assets. Now comes definitive proof that too much password length can be detrimental to ...