Facebook Automates Fight Against Hackers - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Comments
Facebook Automates Fight Against Hackers
Oldest First  |  Newest First  |  Threaded View
Page 1 / 2   >   >>
Lorna Garey
50%
50%
Lorna Garey,
User Rank: Author
10/17/2014 | 4:22:05 PM
Pretty brilliant -- and expensive
That's a smart strategy that should make people feel better about using FB to authenticate to other sites. However, think about how much it costs to maintain the expertise to find and mine all of these sites. 
H@mmy
50%
50%
[email protected],
User Rank: Ninja
10/18/2014 | 6:45:01 AM
Same password
Its true that many people use same password on different websites which makes the situation worse, but it is not easy for anyone to remember 20-25 different passwords and keep guessing when you need to log in. These security breaches must put security researchers to action.
Ariella
50%
50%
Ariella,
User Rank: Author
10/19/2014 | 10:40:40 AM
Re: Same password
@[email protected] true. What they should do, though, is not use birthdays and anniversaries that are made public on FB as their FB or other passwords.  
SachinEE
50%
50%
SachinEE,
User Rank: Ninja
10/19/2014 | 1:23:38 PM
Hacking problem
""The problem of password reuse on multiple websites is endemic and well documented," Long said. "The risks are also clear: If you use the same password on lots of websites, an attacker only has to get your password once to be able to access all of those accounts.""

The problem with the internet is that it leaves traces of where you've been. A skilled hacker can login using the same password in multiple sites by checking your browser history. If browsers could come up with better protection then hackers would have had less dexterity in getting illegal information.
SachinEE
50%
50%
SachinEE,
User Rank: Ninja
10/19/2014 | 1:26:24 PM
Re: Same password
What people can do though, is have 4 to 5 passwords thoroughly memorized becaused storing it on a digital device with an internet connection would mean it is possible to hack that device as well. In house automation systems biometri signatures are used as passwords and that is a safe bet. If facebook or other sites could use smart password protection then that wouldn't be a problem.
mak63
100%
0%
mak63,
User Rank: Ninja
10/20/2014 | 12:35:36 AM
two-factor authentication
Facebook's Login Approvals option uses two-factor authentication to verify your access from a browser you haven't used before.

Chase has been doing something similar for a long time. If i'm not mistaken, Chase checks your IP address, not a browser.
I believe two-factor authentication should be a default action when accessing an important site from another computer, but not so much from another browser.
jagibbons
100%
0%
jagibbons,
User Rank: Ninja
10/20/2014 | 7:08:45 AM
Re: two-factor authentication
One reason behind requiring a two-factor verification for each browser is so that malware with built-in tools to access the internet can't piggy-back on a previous authentication that may be sitting on that computer. I'm sure there are others as well, but I find two-factor authentication to be a great way of making sure the individual using the password at that time is the individual who owns that password.
jagibbons
100%
0%
jagibbons,
User Rank: Ninja
10/20/2014 | 7:12:09 AM
Re: Same password
Or, use a password vault tool. These tools generate and store an infinite number of unique passwords. They are secured by a single pin that you use to open the tool, but it is easy to protect a single password or pin much like one would protect their ATM pin. I use a tool called Splash ID Safe, that syncs my encrypted password data between a computer, my Android phone and my iPad. There are at least half a dozen good tools like this availalbe out there.
Kristin Burnham
50%
50%
Kristin Burnham,
User Rank: Author
10/20/2014 | 10:22:26 AM
Re: Same password
I'll admit it: I've defaulted to the old pen-and-paper method for usernames and passwords. 
TerryB
50%
50%
TerryB,
User Rank: Ninja
10/20/2014 | 12:59:28 PM
Re: Same password
Kristen, my wife does same thing. Of course I laugh at her when she can't find her notebook where she keeps them. :-)  No system is perfect.
Page 1 / 2   >   >>


State of the Cloud
State of the Cloud
Cloud has drastically changed how IT organizations consume and deploy services in the digital age. This research report will delve into public, private and hybrid cloud adoption trends, with a special focus on infrastructure as a service and its role in the enterprise. Find out the challenges organizations are experiencing, and the technologies and strategies they are using to manage and mitigate those challenges today.
Commentary
IT Salary Report 2020: Get Paid What You Are Worth
Jessica Davis, Senior Editor, Enterprise Apps,  2/12/2020
Slideshows
10 Analytics and AI Startups You Should Know About
Cynthia Harvey, Freelance Journalist, InformationWeek,  2/19/2020
News
Fighting the Coronavirus with Analytics and GIS
Jessica Davis, Senior Editor, Enterprise Apps,  2/3/2020
Register for InformationWeek Newsletters
Video
Current Issue
IT Careers: Tech Drives Constant Change
Advances in information technology and management concepts mean that IT professionals must update their skill sets, even their career goals on an almost yearly basis. In this IT Trend Report, experts share advice on how IT pros can keep up with this every-changing job market. Read it today!
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll