#Tag · bonfire.cafe

Heute ist mal wieder der „Ändere dein Passwort“-Tag. Worauf es wirklich ankommt:

🔹 Jedes Konto braucht ein einzigartiges Passwort.
🔹 Verwende lange, zufällig generierte Passwörter.
🔹 Kein Mensch muss sich die merken – dafür gibt es Passwort-Manager. 👇
🔹 Extra-Schutz? Aktiviere Zwei- oder Mehr-Faktor-Authentifizierung (2FA, MFA).

https://www.kuketz-blog.de/empfehlungsecke/#passwort-manager

#sicherheit #security #password #passwort #keepass #keepassxc #keepassdx

Empfehlungsecke

Empfehlungsecke des Kuketz-Blogs: Tools, Dienste und Tipps für digitale Souveränität • IT-Sicherheit, Datenschutz und digitale Selbstverteidigung

Kuketz-Blog 🛡

@kuketzblog@social.tchncs.de · last week

Heute ist mal wieder der „Ändere dein Passwort“-Tag. Worauf es wirklich ankommt:

https://www.kuketz-blog.de/empfehlungsecke/#passwort-manager

#sicherheit #security #password #passwort #keepass #keepassxc #keepassdx

Empfehlungsecke

Empfehlungsecke des Kuketz-Blogs: Tools, Dienste und Tipps für digitale Souveränität • IT-Sicherheit, Datenschutz und digitale Selbstverteidigung

Hacker News

@h4ckernews@mastodon.social · 3 weeks ago

Extracting a UART Password via SPI Flash Instruction Tracing

https://zuernerd.github.io/blog/2026/01/07/switch-password.html

#HackerNews #UART #SPI #Flash #Password #Extraction #InstructionTracing #Cybersecurity #EmbeddedSystems

Dominik Zürner

Extracting a UART Password via SPI Flash Instruction Tracing

Introduction

Hacker News

@h4ckernews@mastodon.social · last month

Flock Hardcoded the Password for America's Surveillance Infrastructure 53 Times

https://nexanet.ai/blog/53-times-flocksafety-hardcoded-the-password-for-americas-surveillance-infrastructure

#HackerNews #FlockSafety #Surveillance #Infrastructure #Password #Breach #Cybersecurity #Privacy #Issues #America

53 Times Flock Safety Hardcoded the Password for America's Surveillance Infrastructure

A responsible disclosure documenting an organization-wide ArcGIS API key exposed across 53 public-facing assets, granting access to the mapping infrastructure underlying approximately 12,000 law enforcement, community, and private sector deployments.

deutrino boosted

𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕

@kubikpixel@chaos.social · 2 months ago

What is a Passkey?
Passkey pop up everywhere, Mike Pound explains what they are!

— "If I set my Passkeys on my laptop how I can use it on my phone?"
— "You can't!"

🔑 https://www.youtube.com/watch?v=xYfiOnufBSk

#passkeys #explains #login #weblogin #it #password #youtube #video #yt #itsec #token #itsecurity #computerphile #passkey

Chewie boosted

PrivacyDigest

@PrivacyDigest@mas.to · 2 months ago

Inside #Uzbekistan 's nationwide license plate #surveillance system | TechCrunch

We know this because the country’s sprawling license plate-tracking surveillance system has been left #exposed to the internet.

#Security researcher Anurag Sen, who discovered the security lapse, found the license plate surveillance system exposed online without a #password , allowing anyone access to the data within. It’s not clear how long the system has been public
#alpr #privacy

https://techcrunch.com/2025/12/23/inside-uzbekistans-nationwide-license-plate-surveillance-system/

TechCrunch

Exclusive: Inside Uzbekistan's nationwide license plate surveillance system

The Uzbek government's national license plate scanning system was discovered exposed to the internet for anyone to access without a password.

PrivacyDigest

@PrivacyDigest@mas.to · 2 months ago

Inside #Uzbekistan 's nationwide license plate #surveillance system | TechCrunch

We know this because the country’s sprawling license plate-tracking surveillance system has been left #exposed to the internet.

https://techcrunch.com/2025/12/23/inside-uzbekistans-nationwide-license-plate-surveillance-system/

TechCrunch

Exclusive: Inside Uzbekistan's nationwide license plate surveillance system

The Uzbek government's national license plate scanning system was discovered exposed to the internet for anyone to access without a password.

𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕

@kubikpixel@chaos.social · 2 months ago

What is a Passkey?
Passkey pop up everywhere, Mike Pound explains what they are!

— "If I set my Passkeys on my laptop how I can use it on my phone?"
— "You can't!"

🔑 https://www.youtube.com/watch?v=xYfiOnufBSk

#passkeys #explains #login #weblogin #it #password #youtube #video #yt #itsec #token #itsecurity #computerphile #passkey

Em :official_verified: boosted

knoppix

@knoppix95@mastodon.social · 2 months ago

ESET will retire its Password Manager on Oct 18, 2027, with all stored data deleted after shutdown. 🔐

Users must export credentials and migrate early as renewals and activations face strict cutoffs. ⏳

🔗 https://proton.me/blog/eset-password-manager

#TechNews #Security #Privacy #Data #Cybersecurity #Encryption #OpenSource #Passwords #Migration #UserRights #Accountability #Tech #DigitalSafety #ESET #Password #PasswordManager

Proton

ESET Password Manager is shutting down — now what? | Proton

ESET Password Manager sales have ended, and your saved data will be deleted on Oct 18, 2027. See how this affects you and what to do next.

informapirata ⁂ :privacypride: boosted

Open Genova APS

@opengenova@mastodon.uno · 2 months ago

Il progetto SUM Erasmus+, con Lepida al centro, dà il via a laboratori peer-to-peer per aiutare gli over 65 a combattere la #disinformazione, trasformando gli anziani in alleati digitali attivi. La guida per la #sicurezza WiFi domestica spiega con passaggi semplici come adottare: #password robuste, VPN sul router, protocolli moderni e reti ospiti per blindare casa da hacker e intrusi.

(1/2)

@informatica

https://bit.ly/48TLaDS

Open Genova APS

@opengenova@mastodon.uno · 2 months ago

(1/2)

@informatica

https://bit.ly/48TLaDS

Zack Whittaker

@zackwhittaker@mastodon.social · 2 months ago

NEW: Petco has taken down parts of its Vetco website after we discovered a masive data leak exposing customers' personally identifiable information (and their pets!) to the open web.

After flagging the leak, Petco still took four days to respond. We estimate millions of customers may be affected.

More: https://techcrunch.com/2025/12/10/petco-takes-down-vetco-website-after-exposing-customers-personal-information/

Paco Hope is thankful

@paco@infosec.exchange replied · 2 months ago

@zackwhittaker This is terrible. My dog isn’t very good with #cybersecurity and uses her owner’s name as her #password. I tried giving her a password wallet but she just buried it in the back yard.

Lord Doctor Olle W

@ollej@hachyderm.io · 2 months ago

RustGenPass is a small command line utility to generate passwords from a master password and the domain of a website. It’s a Rust implementation of the SuperGenPass utility.

With it you can have unique passwords for every website without the need to save them somewhere. Which means there is no risk of the passwords leaking.

https://github.com/ollej/rustgenpass

#Rust #RustLang #security #cli #password

GitHub

GitHub - ollej/rustgenpass: An implementation in Rust of the SuperGenPass utility.

An implementation in Rust of the SuperGenPass utility. - ollej/rustgenpass

knoppix

@knoppix95@mastodon.social · 2 months ago

ESET will retire its Password Manager on Oct 18, 2027, with all stored data deleted after shutdown. 🔐

Users must export credentials and migrate early as renewals and activations face strict cutoffs. ⏳

🔗 https://proton.me/blog/eset-password-manager

#TechNews #Security #Privacy #Data #Cybersecurity #Encryption #OpenSource #Passwords #Migration #UserRights #Accountability #Tech #DigitalSafety #ESET #Password #PasswordManager

Proton

ESET Password Manager is shutting down — now what? | Proton

ESET Password Manager sales have ended, and your saved data will be deleted on Oct 18, 2027. See how this affects you and what to do next.

hypebot and 1 other boosted

Paco Hope is thankful

@paco@infosec.exchange · 2 months ago

Ugh. This is such a stupid #password dialog for #Dell #idrac.

If you have less than 8 characters, it tells you to use "at least 8". If you have 8 characters, it is happy. If you type 9 characters it tells you that you have too many characters.

You must have exactly 8. No more. No less.

3 media

The password field with exactly 8 dots in it. No warnings

The password field with 9 dots in it. "Password exceeds the maximum allowed length"

The password field with 7 characters in it. The error says "Use at least 8 characters."

Paco Hope is thankful

@paco@infosec.exchange · 2 months ago

Ugh. This is such a stupid #password dialog for #Dell #idrac.

If you have less than 8 characters, it tells you to use "at least 8". If you have 8 characters, it is happy. If you type 9 characters it tells you that you have too many characters.

You must have exactly 8. No more. No less.

3 media

Aral Balkan boosted

d4nyl0 :linux: :manjaro:

@d4nyl0@mastodon.uno · 3 months ago

Louvre surveillance system #password was LOUVRE

https://www.redhotcyber.com/en/post/theft-at-the-louvre-the-surveillance-systems-password-louvre-has-put-the-museum-in-crisis/

#Louvre #security

Red Hot Cyber

Theft at the Louvre: The surveillance system's password "LOUVRE" has put the museum in crisis.

The theft at the Louvre reveals security flaws in the world's most visited museum. The passwords for the video surveillance systems were extremely simple.

d4nyl0 :linux: :manjaro:

@d4nyl0@mastodon.uno · 3 months ago

Louvre surveillance system #password was LOUVRE

https://www.redhotcyber.com/en/post/theft-at-the-louvre-the-surveillance-systems-password-louvre-has-put-the-museum-in-crisis/

#Louvre #security

Red Hot Cyber

Theft at the Louvre: The surveillance system's password "LOUVRE" has put the museum in crisis.

The theft at the Louvre reveals security flaws in the world's most visited museum. The passwords for the video surveillance systems were extremely simple.

Ben Ramsey boosted

Alerta! Alerta!

@heiglandreas@phpc.social · 4 months ago

I took the time to update https://packagist.org/packages/stella-maris/nist-password to the latest version of the NIST specs regarding passwords. It's now also tested on PHP8.1 through PHP8.5

If you are looking for a library to make sure your passwords are compliant to the latest security rules, this might be for you.

Feel free to open an issue when you're missing something.

#php #password #nist80063

stella-maris/nist-password - Packagist

Handle password according to the NIST