Password

Security flaws in some models of HP LaserJet Pro printers can reveal users’ administrator passwords to remote attackers, a researcher has revealed.

Google’s Chrome browser has been criticized over its password security, after a developer found that anyone logged into the same OS account could easily see any saved website passwords in plain text.

One in six adults use the name of a pet as the basis of their password, and two-thirds use their partner’s name, according to a new survey commissioned by Google.

A fiber-optic tabletop PC system “reads” fingerprints as people use it – and could form the basis of a secure system for transactions in shops or banks.

The PIN codes used to protect smartphones offer a useful line of defense against criminals – unless, that is, your device falls into the hands of the robot R2B2.

There are a few tricks to making passwords that will at least slow down cybercriminals – buying you time to reset your accounts if a list of encrypted passwords leak in a data breach.

Micro-blogging site Tumblr has warned users that passwords can be “sniffed” from its iPhone and iPad apps – and issued a “very important” security update for both apps.

A new biometrics system could “read” blood vessels under the skin using thermal imaging cameras – a system which its inventors claim would be “almost impossible to spoof.”

Yahoo defended its plan to recycle inactive user IDs this week, saying that it had put in place safeguards to prevent the recycled usernames being used for identity theft.

Medical devices including heart defibrillators, patient monitors and anaesthesia devices include a dangerous password vulnerability which could be exploited by cyber attackers, according to the FDA.

A new era of secure passwords could be upon us with a facial password system that can unlock phones using facial expressions – with users required to stick tongues out or frown at the camera instead of typing a password.

Evernote and LinkedIn have both added an option for two-factor authentication in the past few days – days after Twitter announced its optional two-factor security system.

Motorola has revealed plans for hi-tech authentication systems that could make accessing data faster and easier – including a “tattoo” with embedded sensors and antenna, and an “authentication pill” which turns the human body into a giant authentication token.

The new feature allows users to log in even if they have also lost access to their email account and cannot initiate a password reset.

Even passwords considered “strong” by IT departments are often now vulnerable to hacking, according to professional services firm Deloitte. The firm predicts that 90% of user generated passwords will be vulnerable to hacking this year.

The biggest cyber security problem large companies face could be employees – a survey reveals that nine out of ten employees knowingly ignore or violate their company’s data policies.

The idea that we might ‘think’ passwords instead of typing them sounds like science fiction – but a team of UC Berkeley School of Information researchers has proved that it can work, using existing ‘mind reading’ headsets.

Up to 81% of computer security professionals reuse passwords across multiple applications, violating security best practice

PayPal has warned of a looming security crisis if new top-level domains such as .bank are brought into use later this year.

Most security professionals have enough to deal with thanks to insecure passwords – but AT&T seems to want its users to keep them clean, too. The “password restrictions” page for AT&T users says, “The password can’t contain the words “password”, “admin”, “pa$$w0rd” or other common words. The password can’t contain obscene language.”

Stepping up protection of the Apple ID falters as password reset bug emerges before two-step verification is fully implemented.