We have reset all users passwords and closed the security hole that allowed them to enter.
Bowes, a consultant with Dash9 security and a developer for security scanning tool NMap, says he collected the passwords to help researchers figure out how users choose passwords and make the authentication process more secure.
FORBES: Researcher Creates Clearinghouse Of 14 Million Hacked Passwords
Today, it has 300 people, out of a total work force of 3, 500, monitoring spam, resetting users' passwords and flagging user complaints to higher-level executives.
Twitter said earlier this month that the theft of 250, 000 users' passwords, as well as usernames, emails and other data, was "not the work of amateurs".
To cut down on those costs, the USPS created a self-service Web site and set up a phone line with voice-recognition software, either one of which lets users reset passwords on their own.
Ashkan Soltani, an independent privacy and security researcher, said such a move would give attackers "a toehold" in Twitter's internal network, potentially allowing them either to sniff out user information as it traveled across the company's system or break into specific areas, such as the authentication servers that process users' passwords.
"We should be designing systems that won't let users choose lousy passwords and don't care what links a user clicks on, " he wrote.
WSJ: You Won't Believe How Adorable This Kitty Is! Click for More!
Many security experts have recommended that users change their passwords.
FORBES: If LinkedIn Hasn't Fixed Its Massive Security Breach, A New Password May Not Be Enough
But that didn't cut down on the number of passwords users had to keep track of, nor did it reduce the total number of reset requests.
Cluley wrote that this is a service Evernote is likely using to track how many of its users changed their passwords and says not to worry.
One of the most popular features of Intuit's Quicken financial software is the "PIN vault, " which holds users' various passwords so Quicken can fetch financial information from other sites.
Yesterday it emerged that Last Pass, a service that syncs with browsers to let you control a variety of passwords with one master password, had asked its users to change their master passwords after discovering a potential breach to its database.
Yahoo apologized in the statement and urged users to change their passwords on a regular basis.
The company has forced all affected users to change their passwords and reset their session tokens.
FORBES: Twitter Hack Mostly Hit Early-Adopter, Well-Connected Users (And Probably President Obama)
Security experts say it's best for users to create new passwords for each of their online accounts.
In the meantime, the company apologized for the breach and is advising users to change their passwords accordingly.
ENGADGET: Yahoo confirms server breach, over 400k accounts compromised
As a security precaution, however, it is requiring all users to reset their passwords when they log in.
FORBES: Online Attack on Evernote Triggers Service-Wide Password Resets
Online information storage firm Evernote has asked all users to reset their passwords, following a security breach by hackers.
Strict security measures at the Postal Service required regular password changes and forced users to select nonobvious passwords, which are harder to remember.
We encourage users to change their passwords on a regular basis and also familiarize themselves with our online safety tips at security.yahoo.com.
ENGADGET: Yahoo confirms server breach, over 400k accounts compromised
It also reminded users to create complex passwords for their accounts.
WSJ: Chinese Online Retailer Yihaodian Probes Possible Security Breach
As part of the agreement, wireless carriers will also roll out initiatives to encourage mobile-phone users to set up passwords on their devices to deter theft.
WSJ: U.S. Government, Carriers Plan a National Database of Stolen Cellphones
Not everyone will be comfortable with Google extending its reach this way, particularly in light of the fact its Street View cars collected users' emails, passwords and other personal data for more than two years before the practice was put to a stop.
In the near term, this can mean helping consumers better understand password manager software, which gives users the power to set arbitrarily complex passwords that are website-specific, without forcing users to memorize them all.
FORBES: Yet Again Consumers Rank Identity Theft As Top Concern
Password manager Last Pass has asked its users to change their master passwords after discovering a potential breach to its database.
One fix Bowes suggests: blocking users from choosing the worst passwords.
FORBES: Researcher Creates Clearinghouse Of 14 Million Hacked Passwords
The intruders do not appear to have stolen passwords of Gmail users, and the company quickly started making significant changes to the security of its networks after the intrusions.
Rapid7, one of the two firms that confirmed the breach, has suggested in a statement to press that users should indeed change their passwords, but that a single switch may not keep them safe.
FORBES: If LinkedIn Hasn't Fixed Its Massive Security Breach, A New Password May Not Be Enough
应用推荐