Tag: security

• And now it’s last.fm

  Last.fm have had a security breach and advised all their users (such as me) to change their passwords. As with LinkedIn, having passwords hashed may not be enough to keep them secure. I don’t know what has happened here and will refrain from commenting on Last.fm in particular, but one does begin to feel that…

  Adrian McMenamin

  June 7, 2012

  Uncategorized

  GitHub, Last.fm, LinkedIn, Password, security

• Why you should change your LinkedIn password

  Several million LinkedInpasswords have been stolen and posted online. The fact that they are “encrypted” does not mean they are safe. The encryption – hashing – means that a lone password cracker trying to “brute force” the passwords would probably take a very long time to get through any significant number. But the point is…

  Adrian McMenamin

  June 6, 2012

  Uncategorized

  hashing algorithm, LinkedIn, password cracking, rainbow tables, security

• GitHub message confirmed genuine

  It seems the GitHub message is genuine, though looking through Twitter suggests there is a lot of unhappiness about the way the message was spread, its timing and its content. Not sending such a message from your own mailservers also looks very foolish to me – checking the headers of a dodgy looking email is,…

  Adrian McMenamin

  March 7, 2012

  Uncategorized

  GitHub, public key encryption, security, SSH, Twitter

• Brokenness of MD5 leads to attack on “The Sun”

  News coverage in Britain has been dominated by “hackgate” for several weeks now, the interest only subsiding as the horrific nature of what happened in Norway on Friday became clear. In the middle of all this the website of News International‘s leading daily, the Sun, was taken over by the “LulzSec” crackers – who spent…

  Adrian McMenamin

  July 24, 2011

  Uncategorized

  hashing, LulzSec, MD5, New Scientist, News International, password protection, security