Are you worried that this weeks leak of LinkedIn/last.fm/eHarmony will compromise your employees' passwords?

jlister
jlister 49 weeks ago

Whenever I learn about another password hack, I just send out my stock "password hack" email. Essentially, it says, "Hey, I know none of you little angels would use your work account passwords for personal stuff, but...." So that went out Monday for LinkedIn, Wednesday for eHarmony, then again today for last.fm. I limit it to major breaches, but all three of this weeks were what I would consider major. I am certain that some people use the same password for everything. So it doesn't take long for me to start thinking of someone looking at a LinkedIn account, seeing that John Doe works at Acme Corp, then using John's password to access his corporate email, etc. Maybe I'm overly cautious, I don't know. How much of an issue do you think this is?

Tags: hacks, passwords, security, stolen passwords
Topic: Security
Answer this Question

Answers

2 total
jimlynch
jimlynch 49 weeks ago
Vote Up (9)

Just make sure they all change their passwords, and it probably won't be a problem. It's also a good idea to include information on how to set up strong passwords. Many people are utterly clueless about how easy it is for common passwords to make accounts vulnerable.

jack12
jack12 49 weeks ago
Vote Up (8)

Better safe than sorry.  Without a doubt, unless you are at a very small company, there are people that are using the same ID and password across multiple sites and your network if username/password restrictions don't prevent it.  I'm sure a lot of passwords that are being used, assuming you didn't assign them, are the same absurdly weak choices that you see again and again: qwerty, password, 12345asdf, john316, etc.  Anytime you can use self-interest about things employees care about (oh, noes, my eHarmony account!!!!) to reenforce the importance of basic security practices, you might as well take advantage of it.  

Answer this Question

Related Questions

RomanZ
RomanZ
1 year ago
How much attention do you pay to the passwords used by your company's employees?

Do you guide employees at your company on the creation of passwords? There is a fair amount of mixed use of laptops at my office, since...

Tags: laptops, passwords, security
2 Answers
Answer It
delia25
delia25
1 year ago
How much of a security boost will Windows 8's gesture based "password" provide?

The idea of using finger movements to log to tablet PCs seems interesting, even as it makes me think of something I would see on an old...

Tags: gesture based login, passwords, security, Windows 8
2 Answers
Answer It
lbloom
lbloom
1 year ago
TRUSTED VOICE
When was the last time you changed your password?

My boss doesn't want any passwords to ever change - which is very bad security policy. Experts say that you should not use the same...

Tags: password, security
2 Answers
Answer It
mstrauss
mstrauss
1 year ago
How secure is your data center?

Much media attention is paid to stories about hackers using sophisticated tools for breaking into systems VIRTUALLY, just using network...

Tags: data center, security
2 Answers
Answer It
RomanZ
RomanZ
1 year ago
Is it safer to hire hackers or prosecute them?

Should companies embrace former hackers as security experts, or is it better to label them as public pariahs? Some executives rightfully...

Tags: hacker, security
3 Answers
Answer It

Ask a question

Join Now or Sign In to ask a question.
Blue Coat Systems to acquire security analytics firm Solera Networks
Blue Coat Systems, a provider of Web traffic filtering and business assurance products and services, plans to buy security analytics specialist Solera Networks, which uses data mining techniques to classify network traffic and detect potential security threats.
New Citadel malware variant targets Payza online payment platform
A new variant of the Citadel financial malware is targeting users of the Payza online payment platform by launching local in-browser attacks to steal their credentials, according to researchers from security firm Trusteer.
U.S. power companies under frequent cyberattack
A survey of U.S. utilities shows many are facing frequent cyberattacks that could threaten a highly interdependent power grid supplying more than 300 million people, according to a congressional report.
Bit9, FireEye, Palo Alto Networks team to hit zero-day malware
Bit9 has teamed with FireEye and Palo Alto Networks, which each have sandboxing technologies, in order to share information related to zero-day attack code.
Researchers find critical vulnerabilities in popular game engines
Security researchers found serious vulnerabilities in the engines of several popular first-person shooter video games that could allow attackers to compromise their online servers and the computers of players accessing them.
Why don't risk management programs work?
When the moderator of a panel discussion at the recent RSA conference asked the audience how many thought their risk management programs were successful, only a handful raised their hands. Why don't these programs work?
Attack on Telenor was part of large cyberespionage operation with Indian origins, report says
A recent intrusion on the computer network of Norwegian telecommunications company Telenor was the result of a large cyberespionage operation of Indian origin that for the past few years has targeted business, government and political organizations from different countries, according to researchers from security firm Norman Shark.
Security Manager's Journal: NAC deployment means better access control at last
The deployment has already revealed a whole lot of devices that don't meet the criteria for getting on the corporate network.
Chinese hackers master art of lying low
China's remarkable success in infiltrating U.S. government, military and corporate networks in recent years shouldn't be seen as a sign that the country is gaining on the U.S. lead in cybertechnology, security experts say. They're just very persistent and very good at remaining undetected for long periods of time.
Yahoo Japan says 22 million user IDs may have been stolen
Yahoo Japan, the country's largest Web portal, said up to 22 million user IDs may have been leaked during a hack that was discovered last week.

Most Active Members

jimlynch

jimlynch

0 questions | 1603 answers

TRUSTED VOICE
Christopher Nerney

Christopher Nerney

2 questions | 179 answers

becker

becker

43 questions | 92 answers

TRUSTED VOICE
wstark

wstark

41 questions | 70 answers

lsmall

lsmall

14 questions | 87 answers

TRUSTED VOICE