* Posts by caljudge6

3 publicly visible posts • joined 24 May 2016

Just give up: 123456 is still the world's most popular password

caljudge6

Re: Don't Just Blame Users

Shocking that some banks force you to use WEAK passwords. I would change my bank!

But I can't say I agree that 'sometimes 12345 is good enough'. The purpose of a password is to ensure accountability. That is not maintained with 12345. If 12345 is fine in terms of risk (no sensitive data accessed), the password control probably should not exist.

Cost of control should never outweigh its value.

Having said that, you may think your account has no sensitive data in it, but what if someone steals your credentials and starts posting illegal content all over the web, or malware? It's in your name.

Also I'm pretty sure you will have an email address linked to that account. Now the 'spear-phisher' has your email plus a known interest of yours and could masquerade as the site you are signed up to.

How 'flexible' can the UK actually be on EU data protection law?

caljudge6

The ICO's stance on Data Protection and brexit:

https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2016/04/statement-on-the-implications-of-brexit-for-data-protection/

So no, it won't be a 'lite' version of DPA.

Suckfly: The hacking group targeting India but taking weekends off

caljudge6

CJ

Has nobody considered that they may be syncing the timings of their attacks with the timings of the 'weakest links' in the security chain?

Or, that they are using these 'weakest links' to cloud their own movements by the noise they generate.

I would imagine activity at 3am on a Saturday will stick out like a sore thumb.