‘Project HellFire’ Demonstrates Need for Stronger Passwords - huckstepeareeter

In the ignite of news that the FBI has arrested a LulzSec hacker on charges related to attacks against Sony Pictures, a new team of hackers is making headlines. Team GhostShell has published all over a million hacked records, and it promises there's more to seed.

The new attacks are part of "Fancy HellFire." Design Red region is intended as a form of online protest against Sir Joseph Banks and politicians, and as revenge for arrested hackers. Squad GhostShell says, "We are also letting everyone know that more releases, collaborations with Anonymous and other, plus two more projects are still scheduled for this fall and winter. Information technology's only the commencement."

An analytic thinking from a security vendor suggests that near of the breaches were a resolution of SQL injectant attacks. The attacks were aimed at consulting firms, manufacturing firms, government agencies, and banks. Team GhostShell was able to becharm Admin passwords, usernames and passwords from client accounts, and else files and documents.

Apparently, the credit history of individuals makes up a significant portion of the hacked data, so there might be a subsequent imprudent of identity thievery and fraudulent credit accounts.

One thing that stands out in the analysis, though, is that weak passwords continue to be a major emerge. Many of the compromised accounts use silly passwords like "123456." One law unfaltering defaults to using the user's initials pre-pended to "law321," and information technology doesn't require users to change their passwords making for very weak, and easily guessed passwords.

You should have some sort of cross-device security tools in place to protect against malware and other attacks crosswise your PCs, tablets, and smartphones. But, even the best protection software program North Korean won't even off for a weak password, and it won't protect you from attacks targeted at third-party sites and services you execute business with.

Two-factor authentication—the likes of that implemented recently by Dropbox—is a ill-trea in the right direction. At least with 2-constituent authentication an attacker would still have to have access to your fingerprints, or somatogenic possession of your smartphone to use in colligation with a kooky password.

But—with or without two-factor authentication—there's No reason to make it easier than necessary for the bad guys. Passwords like "123456," or "qwertyu," operating theatre "password" don't even expect any sort of password cracking tool, and provide attackers with at to the lowest degree same of the keys to your personal information and information. Likewise, make a point you never—below any luck—share your password with anyone.

Again, though, you can't control the security—Beaver State lack thence—of the one-third-party entities you make out business with online. All you can execute is choose to do commercial enterprise with sites and services that take security seriously—and use different passwords for all web site so that a breach of uncomparable doesn't become a breach of your smooth online presence.

Source: https://www.pcworld.com/article/460973/project_hellfire_demonstrates_need_for_stronger_passwords.html

Posted by: huckstepeareeter.blogspot.com

Share this post