Tactical Advice
The First Rule of Security: Do Not Talk About Your Password
Tripwire tests RSA conference goers on this basic tenet of IT security.
posted Mar 21, 2012
The first rule of info security: You do not share your password
The second rule of info security: You do not share your password
Forgive the homage to Brad Pitt's character from Fight Club, but sometimes an important message just can't be repeated often enough.
One of the easiest ways for criminals and hackers to get what they want from users is to simply ask for it. At least that’s the approach that David Spark of Tripwire took as he went up to attendees at the RSA Conference and asked them to supply him with their password.
Most respondents rightfully balked at such foolishness, but a few actually revealed what their passwords were without saying the actual password. For example, one attendee said her password was her dad’s birthday. Great, so now all a hacker needs to do is look her up on Facebook, follow the link to her dad, who very likely is listed on her page as her father, and check out the birthday info on his profile. Easy, breezy, breached.
Others laughingly said silly passwords like “password1,” but don’t laugh too hard. “Password” was actually the most successfully hacked password of 2011, so even if these RSA attendees aren’t actually using this predictable password, far too many other people are.
Watch the video from Tripwire below:
About the Author
Ricky Ribeiro
Online Content Manager
Security
Review: Belkin Advanced Secu... |
This tool can prevent KVM toggling from being a source of network vulnerabilities.
Honeywords: Password Securit... |
Researchers are proposing a new method of spiking the password punch as a way to identify...
How Many Vulnerabilities Doe... |
The potential for damaging data breaches lurks in nearly every corner for SMBs.
Storage
EMC World 2013: Software-Def... |
Storage virtualization is a key element of providing on-demand, flexible cloud services.
How Steve Wozniak Explains V... |
Fusion-io's chief scientist breaks virtualization down into terms everyone can understand.
Product Review: Quantum NDX-... |
Device does double duty for storage and backup.
Infrastructure Optimization
Why More Software Is Headed... |
Many of your favorite software suites are trading in their shiny discs for cloud-based...
Cisco Live 2013: Brush Up wi... |
Get up to speed on convergence, wireless networking, collaboration and more ahead of the...
EMC World 2013: Software-Def... |
Storage virtualization is a key element of providing on-demand, flexible cloud services.
Networking
How to Secure Optimized Netw... |
WAN optimization and security aren’t always complementary. These tips can help you deal...
Cisco Live 2013: Brush Up wi... |
Get up to speed on convergence, wireless networking, collaboration and more ahead of the...
Do Virtual Meetings Boost Pr... |
New study finds that face-to-face meetings don’t always work in workers’ favor.
Mobile & Wireless
Consumr App Powers Informed... |
Reviews and ratings for products on the shelf are only a barcode scan away.
Faster In-Flight Wi-Fi: Com... |
The FCC is working on regulation to free up more Internet bandwidth for air travelers.
CTIA: Wireless Network Data... |
The invisible bytes that zip through the air continue to multiply at rapid rates.
Hardware & Software
Consumr App Powers Informed... |
Reviews and ratings for products on the shelf are only a barcode scan away.
Review: Belkin Advanced Secu... |
This tool can prevent KVM toggling from being a source of network vulnerabilities.
How Many Vulnerabilities Doe... |
The potential for damaging data breaches lurks in nearly every corner for SMBs.