CSOonline

Salted Hash: Phishing study reveals frightening password habits

LAS VEGAS – Passwords are a problem, and yet they’re the primary means of authentication used when at work or at home. Recently, Salted Hash examined 126,357 passwords for accounts compromised during ...
Ars Technica

password hashes vs. user password advise

At work, we are moving a CRM to a hosted solution. I haven't been much involved in the selection process, but have asked some questions on password hashing that as it turns out we probably should have ...
Dark Reading

Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker

If you've ever watched TV and movies about cybersecurity, you probably envision someone sitting in a dark room trying to guess someone else's password based on a few facts like their kids' names or ...
Ars Technica

How cryptographic salt works in linux

I am having a hard time understanding exactly how salting passwords works in linux, and was hoping someone can help me understand it better. I understand the general concept of cryptographic salt, but ...
Krebs on Security

How Companies Can Beef Up Password Security

Separate password breaches last week at LinkedIn, eHarmony and Last.fm exposed millions of credentials, and once again raised the question of whether any company can get password security right. To ...
CSOonline

Salting Passwords Thwarts Rainbow Table Attacks

Common password encryption formats used by programs such as Microsoft’s LAN Manager have, since the mid-1990s, been vulnerable to brute force attacks like the infamous l0phtcrack. A brute force attack ...
Law

Nervous System: Passwords Became More Secure By Adding a Pinch of Salt

Forty years ago this month, Robert Morris and Ken Thompson published an article in the monthly journal Communications of the Association for Computing Machinery. With those four pages, they created ...