As a regular reader of this blog, you are probably using a long, unique, 20 character password with two-factor authentication, and a password manager to keep it all straight. But let’s say that you fall for a phishing scam, and give away the password to your email account. The attacker can now use your email account to request password reset emails from your other online accounts, and you have yourself one big ...
Facebook has added USB key security to it’s two-factor authentication options. Previously, Facebook users could add the additional security of two-factor authentication to their account by using the Facebook app to receive a six digit one-time passcode, or by having the code sent to their smart phone via SMS text message. Facebook now supports the open-source Universal 2 Factor (U2F) standard established by the FIDO Alliance, such as the Yubikey from ...
This actually is in the “good news” department. The some security folks at Facebook are scouring the Dark Web, looking for rainbow tables of user names and passwords in order to find Facebook users who may be reusing the same password on multiple sites. As we have discussed here many times, password reuse creates a serious security vulnerability. If the cyber-crooks have your password for one site, they will try it on ...
When you lose your login credentials to an online account, it can be devastating. Depending on what was compromised and what was lost, you may have an expensive and time-consuming task on your hands. So the bad guys took your user ID and password, or some other personal information. Was it worth it? There is an active resale market for this information, and ...
I read about this on Naked Security, and popped over to the Washington Post to read the full story and list. I knew this was happening, but it is freaky to see the entire list. Facebook collects this information to deliver ads that are targeted at your interests and preferences. If it seems that some of the ads that show up in your feed are weirdly right ...
Everybody, it seems, is on Facebook, and the numbers back it up, with over 1 billion members worldwide. So naturally, anytime you get a crowd of people this large, the cyber-criminals are going to be all over it.
Don’t even get me started with the oversharing of personal information. Please stop telling me and the crooks that you will be out of town for a week on a Vegas vacation, and your ...
Continue Reading →Facebook recently announced an improvement to it’s logon system. Login security seems to be taking a position from and center lately. Wednesday we wrote about Yahoo’s new authentication system, and today we will move on to Facebook’s Login Approvals.
Previously, Facebook users were able to get Login Notifications. When you entered your user name (usually your email address) and password from a new location, browser, or device, Facebook Notifications would send users ...
Continue Reading →There is an important article on ITworld Today that impacts Facebooks users. The link is: http://www.itworld.com/security/63126/facebook-system-error-check-malware?source=nlt_today. Basically, this is another entry in the long list of bogus security downloads that you do not what to get. Please read the entire article if you are on Facebook. It is a short article.
Continue Reading →