It’s a bad idea to entirely rely on the company hosting your password manager to back up your data.
When you force people to use hard-to-remember passwords, you’re actually forcing them to use bad passwords.
LastPass sent out an email and published a blog posting today to go with the support article they published earlier this week. They keep making things worse.
The newly released details about last fall’s LastPass breach and their response to it are bad, and LastPass should feel bad, and you should stop using LastPass.
Companies that engage in slimy marketing practices tend to be slimy companies. RegScale fits that description, so you should avoid doing business with them.
Twitter is in the news again with another security breach in which 235 million users’ email addresses, phone numbers, and Twitter handles were exposed. These seems like a good opportunity to talk about what you can / should do to protect yourself if you need to maintain anonymity online. The basic rule is this: if… Read More »
The open-source package Shamir’s Secret Sharing Scheme, or “ssss” for short, allows a relatively short secret, for example, a password or passphrase, to be split into a specified number of shares in a way that allows the entire secret to be reconstructed from only a subset of the shares. For example, you can split a… Read More »
There is one problem that every single information security / governance / risk / compliance (GRC) organization at every company has to deal with, and that’s keeping track of all the recurring tasks that you need to do to maintain your security and compliance and ensuring that they are done on time. I’m sure that… Read More »