Password Checkup is a Chrome extension that automatically warns you if your password has turned up in a data breach. (Meanwhile, hackers are also keeping track of stolen passwords to consolidate data from various data breaches and stage attacks on new, unhacked websites.)“Passwords continue to remain the ways in which attackers compromise users and gain access to enterprise information.By employing password-less solutions, the enterprise will vastly increase the security of enterprise data.”Raluca Ada Popa Founder And Chief Technology Officer at Preveil But while useful, these services are like applying band-aid to an infected wound that is festering from within.Los Angeles Times, 1.5 million passwords were stolen.
As long as we’re sending, remembering and storing passwords to protect our online accounts, we will be vulnerable to the various types of password-based attacks.
And as technology advances, hackers will become faster and more capable in guessing and cracking longer and more complicated passwords.
In this case, the hashes of 1.5 million e Harmony passwords were uploaded to websites, where hackers were encouraged to join forces to crack them.
What really disappoints me is that e Harmony misses an opportunity to tell its users explicitly that if they use the same password on other websites they must change their passwords there also.
In credential stuffing, hackers use username and passwords from previous data breaches to attempt automated logins on new services.