Weekly Security Roundup #81: Please Stop Reusing Passwords
Your online safety and your financial security depend on it
Best news of the week: we won the award for the Most Educational Security Blog at the fifth annual European Security Blogger Awards!
It’s a great deal to us, since we were competing with legendary cyber security experts. Not to mention the fact that our blog is only two years old. So, for all these, we are extremely grateful and we THANK YOU!
Also, congrats to all other security peeps that were nominated – we know how much hard work it is to constantly come up with great content related to cyber security.
In our mission to help you with cyber security, in this past week we published an article about the best encrypted messaging apps.
We listed 13 apps that use end-to-end encryption (and we’ll constantly update the list), but we also tried to explain why they are so important to our online security and privacy.
And in the light of the recent mega breaches, we also brought up to date this LinkedIn security guide. We tried to keep it simple – only 10 steps that you can easily follow in order to keep your account safe.
This security guide was initially published in 2014 by my colleague, Aurelian. However, we decided to bring it up to date, since a lot of things changed since then and there were introduced new security and privacy features.
Now time for the weekly roundup:
Security articles of the week
Mark Zuckerberg‘s Twitter and Pinterest accounts were compromised last weekend, thanks to the LinkedIn breach. Well… oops. That happens when you use the same, easy password for all your online accounts.
This will never get old. People, will you please stop recycling passwords?
Drake’s Twitter account was hacked because he was using his MySpace pass. (Also, no two-step verification = easy target).
TeamViewer continues to contest claims that it was hacked, blames password reuse and careless user actions for the compromises.
This pretty much sums it all:
“Recent claims from identity theft protection firms that Dropbox has suffered a massive password breach appear to be erroneous.”
The data breaches saga just goes on and on. 100 million users of the popular Russian social network VK.com are being traded on a dark web marketplace.
Check Point researcher Roman Zaikin found a Messenger bug that allowed you to modify or delete messages sent to other users. Facebook fixed it before being exploited.
This statement comes after the recent claims that the social network listens to our conversations in order to serve us targeted ads.
“Facebook does not use your phone’s microphone to inform ads or to change what you see in News Feed. Some recent articles have suggested that we must be listening to people’s conversations in order to show them relevant ads. This is not true. We show ads based on people’s interests and other profile information – not what you’re talking out loud about.”
Hours before Euro 2016 starts, fake websites are selling overpriced tickets.
The title is pretty much self-explanatory.
So here’s what you gonna do after you close this tab:
– Open your most important accounts – from Google to Facebook, Twitter, LinkedIn, TeamViewer, Amazon, Dropbox, whatever else you use.
– Change all your passwords. Set some strong and unique ones.
– Activate two-factor authentication wherever it’s available.
Have a great weekend!
Oh, almost forgot, one last thing: