Frequent password changes are the enemy of security August 3, 2016 Mechanically repeating the advice to change password regularly is based more on superstition than hard data. In scientific reality, a growing body of research suggests that frequent password changes make security worse. As a result, a growing number of security experts have come to believe and advise that frequent password changes do little to improve security and very possibly make security worse by encouraging the use of passwords that are more susceptible to cracking. http://arstechnica.com/security/201...-the-enemy-of-security-ftc-technologist-says/ In my logic, using frequently changing passwords makes them impossible to remember, so you have to write them down, and then security is degraded. Indeed, my bank used to ask me to change password every month, but hasn't done it for several months now, possibly as a result of the above findings. I hope they've stopped the practice as it was a real nuisance. And in any case, so as to keep track of my passwords, I only had two and rotated them every time they asked for a change. I believe many people do that.
NSA etc. - we are told by their ex employees - love the part of unencrypted internet traffic, before one logs in, so they can read the passwords.... Anyone remembers this from the "worst enemy of USofA in recent history"?!? Or have I misunderstood?
Sorry to say, but I disagree with it (article). Changing passwords DOES increase security, strictly ‘scientifically’ seen. It's a pure matter of probability. Changing PWs might create a false idea of security-level, though...(the level is dependent on PW strenght/length) Even when using a pattern when creating new ones, the hashed/encrypted PW (message) changes completely and if the ‘original’ should be cracked additional efforts are needed to crack the new created from a pattern. When you note down the PW or create a readable copy of the PW somewhere you create an issue that has nothing to do with the subject of the article. To note down a PW is a security issue either way. Actually when dealing with sensitive data one should learn how to create safe passwords. Companies for instance have clear regulations. Also there are ways to ‘remind’ complex passwords unreadable to others. But all this is actually not necessary when introducing a 2-way/factor authentication. It is far better the server creates a (temporary) password valid for a short time/session. Banks for instance issue a TAN readable/issued for the authenticated user only. (via separate TAN generator and card)… Another easy way is the user provides a (his/her) public unique key together with a username when registering somewhere. When logging in the server creates a temporary password which is encrypted with the user’s public key. The user decrypts it with the private key and logs in…all one needs is to keep the private key at a safe place. (Private key is corresponding to the bank card)
Fantom Ransomware Poses As Windows Update, Encrypts Your Files A security researcher for AVG has discovered a new piece of ransomware called Fantom that masquerades as a critical Windows update. Victims who fall for the ruse will see a Windows screen acting like it's installing the update, but what's really happening is that the user's documents and files are being encrypted in the background. Users affected by this are instructed to email the culprit for payment instructions. It's not clear how much it costs to decrypt the files or if the person responsible even follows through once payment is received. This isn't the first instance of a cybercriminal using a fake Windows update to hide malicious activity and it isn't likely to be the last. Be careful out there, folks. Read more at http://hothardware.com/news/fantom-...ows-update-encrypts-files#vvr8jAtV0BU5L1uI.99 For some people, this would be nearly as bad as genuine Windows Updates.
An 'impossible' thruster is about to be tested in space An actual EM Drive is about to be launched into space for the first time, so scientists can finally figure out — once and for all — if it really is possible for a rocket engine to generate thrust without any kind of exhaust or propellant... more
Something is wrong with dark matter Nearly a mile under the Black Hills of South Dakota sits a canister of the atomic element xenon, chilled cold enough to turn it to liquid. The canister is the Large Underground Xenon, or LUX, detector -- the most sensitive dark matter detector in the world. But the results of a new analysis by the LUX Collaboration has left scientists perplexed about a substance that has guided the formation of the stars and galaxies since the cosmos began: dark matter... more
European High Court: Selling a computer with preinstalled software is not unfair Selling a consumer a laptop with pre-installed software is not an unfair business practice, a European high court has ruled. The decision marked a huge win for Sony and other computer manufacturers. A top European court has ruled that technology companies can sell consumers computers with pre-installed software without offering a version that is not already equipped with an operating system and ready for immediate use. The ruling stemmed from a complaint made eight years ago by a Frenchman, who bought a Sony laptop in 2008 with Windows Vista Home Premium already installed on it. At the time, the plaintiff refused to agree to Window's terms and conditions and asked Sony to reimburse him for the cost of the operating system. Sony declined, offering instead to refund him for the full cost of his laptop, providing he returned the device. But that didn't satisfy him and he sued Sony for 450 Euros ($506) for the pre-installed software and 2,500 Euros for damages "as a result of unfair commercial practices," the European Court of Justice (ECJ), which handed down its decision on Wednesday, noted on its website. The ECJ ruled in Sony's favor, saying it was not unfair for a company to sell computers with ready-to-go software as long as it is upfront about what is installed. The court also noted that most people in the market for a new computer expect devices to have software already on them. To underscore just how long ago the case was in technology years, Forbes noted: "Microsoft's operating system is now three generations along and Sony stopped making laptops two years ago." http://www.dw.com/en/sony-wins-case-over-pre-installed-software/a-19531464 My comment: Probably going contrary to how most computer users feel, and though I don’t like the decision either, I nevertheless find it correct in a free market, of which product promotion is an inseparable part. What I can’t accept, is that the legal system takes so long to reach a simple decision. It’s an outrage accepted by everybody.
@Katzenfreund: Even though Sony won a lawsuit, all it does is show everybody which computers not to buy. People are in -complete- control as to what they will or won't accept. Simply do not purchase their products. And when their sales drop, they will be forced to understand. Hit 'em in the pocketbook.
That particular case referred to the OS, which one really expects to get or at least he knows he’s getting it when he buys the computer. But the court ruling appears to also apply to any preinstalled software, including trial versions and pure crapware, not to mention spyware. It’s a pity the ruling didn’t specifically exclude these.
First: Applause to that Frenchman making a complaint against a giant... Sony! IMO the sentence is OK to me. Sony did nothing wrong and offered a reasonable return policy. The consumer was aware that he bought a bundle, means had paid for hardware and software. Not agreeing to the software EULA means to return the product which is a PREINSTALLED device. If Sony also offers a OS free version or not is their idea of a product...people can buy elsewhere OS free devices.. MJ is right as well...people can always refuse to buy products from a company that is not acceptable concerning marketing politics in whatever way... Besides of Microsoft and Apple Sony belongs also to my personal list (because of DRM stuff)...also Beats Electronics and some more.. I think people should be more consequent denying a company as a sort of own 'punishment' ....people saying lol it's nothing to them if you (one person) does not buy their stuff anymore...but that is IMHO not the point, it is my personal right and thing I can do.
How the sugar industry has distorted health science for more than 50 years The sugar industry has a long history of shaping nutrition policy in the United States, working to mask the potential risks of consuming too much of the sweet stuff. It wasn’t until this year, for instance, that the US Dietary Guidelines finally recommended people keep their consumption of added sugars below 10 percent of their total calorie intake — decades after health advocates began pressing for the measure. The sugar lobby had fended off this recommendation all the while... more
Adblock Plus is now selling advertising Sept 12, 2016 Adblock Plus is the most popular piece of ad-blocking software in the world. But its 100 million users may soon start seeing new ads appearing on their screens after the company launched a service that will allow more “acceptable” ads through its blocking technology. The Wall Street Journal reports that Adblock Plus parent company Eyeo has partnered with a firm called ComboTag to create an ad marketplace where websites can choose “pre-approved” ads for their pages. Adblock Plus users who then visit these sites see these ads, which are said to be smaller and less intrusive the regular versions. Google and AppNexus will also help sell ad space from the new platform. http://www.theverge.com/2016/9/13/12890050/adblock-plus-now-sells-ads
EU Court says Public WiFi Networks not liable for Internet piracy by users The European Court of Justice has today offered a preliminary “opinion” on the long-running “McFadden case” in Germany, which effectively concludes that operators of free (no password required) open publicWiFi networks cannot be held liable for copyright infringements committed on their networks. The outcome is perhaps a victory for common sense and may also provide some potential defence to those who accidentally leave their home WiFinetworks open for anybody within range to access, as well as public libraries, cafes and other venues that offer such services. http://www.ispreview.co.uk/index.ph...wifi-networks-not-liable-internet-piracy.html The ruling is definitely a victory for common sense, and it's refreshing that, occasionally, courts possess it.
Apple may kill the headphone jack on the MacBook Pro Apple might be going all-in with the wireless revolution as the company is now allegedly considering killing the headphone jack on the MacBook Pro. Users are reporting that as of recently Apple has been asking them to fill in a survey about the way they use their MacBook Pro and one of the questions pertains particularly to the headphone jack. http://thenextweb.com/apple/2016/09/15/macbook-pro-kill-headphone-jack/ They've already removed the headphone jack from their iPhone. Apart from the inconvenience, you now can't listen to music while charging the battery. Not a wise decision according to me, and somewhat reminiscent of Microsoft removing the Start Menu from Windows 8. It won't win them any new buyers. As for me, I wouldn't buy an Apple product anyway because of the price and now they are giving me more reasons.