If you notice that your website has been hacked, the most important thing to do is keep calm and avoid panic.
After a few days of speculations fuelled by a not clear enough explanation, the OpenSSL Foundation has confirmed that the late December defacement of its Openssl.org website happened because of insecure passwords, and not a vulnerability in VMware software.
By using two-factor authentication, sites reduce the value of a stolen password because an attacker would also need access to the “second factor” in order to successfully access the victim’s account.
Netwrix announced the availability of Netwrix Password Manager as a completely free offering to businesses with up to 100 users.
Password-based authentication is widely used today, despite problems with security and usability.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.