The Key to My Company: ‘Password1’

email-hack

Password hacking, breaking into a company, viewing top-secret material – seems like the things only seen in the movies. Turns out you don’t need “1337hax” skills to do so when the top 10 corporate environment passwords are things like “password1” and “hello123.” The results of a recent study by the NetworkWorld via a series of Trustwave penetration tests of corporate environments environment in 2013 and 2014 resulted in an astonishing result of insecure and reused passwords for company accounts.

The article also reveals interesting insight into a hacker’s behavior and mannerisms. An astonishing 86% of hackers aren’t worried about getting caught, and even more interestingly, 51% do it just for fun or thrill. With so many passwords than can be hacked in just a few minutes, it’s not surprising that password hacking can become a fun little side hobby for any Average Joe.

What can you do to help prevent your personal accounts and company from getting hacked? The first step is creating strong and unique passwords for your accounts. You can check out our free strong password generator made by CommonKey to help you get started. Want to learn more about how to protect your company? Shoot us an email and info@commonkey.com!


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

Russian Hackers Release 5 Million Gmail Usernames and Passwords Online

email-hack-2

A combination of recent phishing scams and weak passwords resulted in a massive e-mail hack. Usernames and passwords from Gmail and two Russian-language services, Yandex and Mail.ru, were made public. Sources say that if your e-mail has been compromised, it is likely that the leaked passwords are too old to grant hackers access. However, it is still recommended to be on the safe side and check out websites such as ‘Is my e-mail leaked’ to see the security status of your e-mail. And, of course, change your password to something more complicated and more secure to prevent future hacks. To help you get started, here is our recommended password generator, provided by CommonKey.


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

Stubhub Accounts Hacked Due To Poor Password Management

StubHub

Russian hackers used mismanaged Stubhub accounts to fuel their recent international money laundering operation. The hackers breached Stubhub accounts to purchase and resell high-demand tickets. Unlike Target’s security catastrophe, where the company was directly breached, Stubhub’s hack was likely a result of mismanaged passwords. Everyone should have a different password for each online account, consistently check your accounts for suspicious activity, and rotate your passwords using a strong password generator.

Having difficulty memorizing all your company passwords? Let CommonKey manage the keys to your company with our team password manager and built-in strong password generator.


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

CommonKey prepares for Techweek NY

techweek

The CommonKey team just received word we were accepted to compete in Techweek NY, the nation’s leading technology conference and festival.

The event is a massive gathering of startups, technologists, and entrepreneurs that make an impact in NYC and across the globe. There are events the entire week starting September 29th through October 5th.

CommonKey will be participating in the LAUNCH competition on Thursday, where judges will have a chance to check out our booth. We’d love your support as we continue to solve team password management!


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

Flaw in router chipset leads to easy WIFI hacking

Asus Router w/ Broadcom Technology

A flaw found by Oxcite in some router chipsets now let hackers bypass the push-button security of WiFi Protected Setup (WPS) nearly instantly. What used to be a difficult task of trying to grab inbound or outbound data packets to crack the password, hackers now can take a single shot based on a series of offline calculations that take only about a second to complete.

Fortunately, this vulnerability in the hardware isn’t in every router, but it’s likely found in relatively common chipsets from Broadcom and others that have yet to be named (as they rush to patch the issue). Ars Technica chimes in and notes the flaw is likely due to a wireless networking implementation issue rather than the technology itself.

Bottom line, turn off your router’s WPS and work out of the native router setup.


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

CommonKey competes at NYC Tech Cocktail Startup Showcase tomorrow!

tc-logo-stacked-with-glass

 

CommonKey has been selected to present and compete in the upcoming Tech Cocktail’s New York Mixer & Startup Showcase tomorrow, August 27th at 6:30PM. If you happen to be in the neighborhood, stop by, say hello, have a drink and come learn about all the cool startups in New York City.

Have a few seconds? Vote for us as New York’s Hottest Showcasing Startup HERE.


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

4.5 million records stolen from hospital network

Community Health Systems hacked The hospital network Community Health Systems announced it was hacked on Monday, which has led to 4.5 million patients data being stolen. The hospital network operates 206 hospitals across 28 states in the United States and the hackers gained access to names, social security numbers, physical addresses, birthdays, and telephone numbers.

The impact is huge as anyone who received treatment from a physician’s office tied to a network-owned hospital in the last five years, or was merely referred there by an outside doctors, is affected. This means the hackers could have access to bank accounts, credit cards, and even be able to take out loans, ruining personal credit histories for the affected.

Community Health Systems is currently working with Mandiant (cybersecurity experts) regarding the recent attack and have determined the attack came from China using high-end, sophisticated malware to launch the attacks sometime in April and June. Additionally, the FBI is working closely with the hospital network and “committing significant resources and efforts to target, disrupt, dismantle and arrest the perpetrators.”

The hospital network has announced it plans to offer identity theft protection to the 4.5 million victims of the data breach and provide more public information as the investigation continues.


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

Can changing your password change your life?

 

superman-password

Going through a tough situation? Trying to set goals? In this article, the author explains his (non-traditional) therapy by changing his passwords to relate to his personal goals. From wacky passwords such as “Forgive@her” and “Sleep@before12”, he was able to accomplish goals such as getting over depression and maintaining a healthy lifestyle. Psychologist Ann Kearney-Cooke explains how we tend to choose emotional, anecdotal, and easy to choose passwords.

Hats off to all you goal setters! To better protect yourself, however, try adding complicated snippets to the end of your passwords. Check out CommonKey and its password generator feature.


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

Hacking costs the economy between $375 and $575 billion per year

A new report by former US officials pegged the cost of hacking at up to $575 billion per year, writes the Wall Street Journal. It’s a huge number.

One of the biggest weaknesses, and a subject close to our heart, is insecure passwords, which are very often the entry point for hackers. So if you don’t yet have a team password management app, give CommonKey a try. And if you do have one, make sure to use long, randomized passwords and don’t recycle across different apps.

Be careful with your passwords, people.

Be careful with your passwords, people.

 


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.

Data Breaches Have Real Consequences as Target CEO Steps Down

35 years of hard work, true commitment, and company loyalty came to an abrupt end yesterday when Target’s CEO, Gregg Stinhafel, stepped down from his post. His downfall came out of the of cyber blue when last December a bunch of hackers snapped up 40 million customers’ credit-card numbers in one of the largest data breaches in internet history.

The incident has been followed by at least 90 lawsuits (and $61 million through Feb. 1 to settle them). The company’s announcement read: “…Most recently, Gregg led the response to Target’s 2013 data breach. He held himself personally accountable and pledged that Target would emerge a better company. We are grateful to him for his tireless leadership and will always consider him a member of the Target family. The board will continue to be actively engaged with the leadership team to drive Target’s future success and will manage the transition…[including]…a comprehensive CEO search”.

Stinhafel’s robust career ended with a pink slip because he did not take data security seriously enough. This episode should serve as a warning for managers everywhere that your job could be on the line if you fail to ensure that your company is using best security practices. Nobody ever got fired for going the extra mile to ensure that their company’s information is stored safe and secure.


Have your own opinion on the topic or want to chat about password and internet security? Contact us at blog@commonkey.com!

Interested in staying in the know? Add us to your RSS feed using this link.