A training provider we use recently posted this. The executive summary is: "Use a 9-character password with upper- and lower-case text, numbers and symbols and your password will be 'unhackable'". According to the author, it would take about 45,000 years to hack using a brute force tool. Unfortunately, this is plain wrong. Brute force hacking … Continue reading Why can’t people get the message about passphrases?
In recent months I’ve noticed a disturbing trend. More and more organisations are adding additional layers of “security”, in the form of supplementary security questions, to their websites and call-centre interaction. In addition to a username and password, they now want you to provide your date of birth and answers to a number of pre-selected … Continue reading Why “improved” on-line security could compromise your bank account