Urbanists.Social

24 posts17 participants4 posts today

BluedepthI've been mumbling about this for ages, and it's fine, nobody has to listen to me, even when I have something to teach. Especially about <a href="https://mastodon.social/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> and <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>. So here goes, deep breath aaaaaand: (1/3)

Karl Voit :emacs: :orgmode:Who says that <a href="https://graz.social/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> isn't helping people in real-life situations?Consider yourself a bad <a href="https://graz.social/tags/hacker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacker</a>, breaking in a company <a href="https://graz.social/tags/SharePoint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SharePoint</a> server. With <a href="https://graz.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://graz.social/tags/CoPilot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CoPilot</a>, you're able to determine recent <a href="https://graz.social/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pentesting</a> reports, plain text <a href="https://graz.social/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> and other crucial information for your attack right away. As if you get direct help by an insider. Amazing.If you find an interesting sensitive file you don't have reading permission for, you can ask CoPilot to show it to you, overriding all the <a href="https://graz.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> permission measures. Even better: this is not even logged as a file access. No need to clean up afterward.Exactly the software you will need for your work. <a href="https://graz.social/tags/Pentester" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Pentester</a> and attackers could not have asked for a better tool. Your victims will pay for this handy service themselves. Great to get that kind of important support by Microsoft. 😉 Read about that on: <a href="https://www.pentestpartners.com/security-blog/exploiting-copilot-ai-for-sharepoint/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.pentestpartners.com/security-blog/exploiting-copilot-ai-for-sharepoint/</a><a href="https://graz.social/tags/LLM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LLM</a> <a href="https://graz.social/tags/fail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fail</a> <a href="https://graz.social/tags/backdoor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#backdoor</a> <a href="https://graz.social/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pentesting</a>

Dumb Password RulesThis dumb password rule is from ING Australia.4 numeric digits. "Added security" by randomising the positions on the keypad. Must be clicked.<a href="https://dumbpasswordrules.com/sites/ing-australia/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/ing-australia/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Dumb Password RulesThis dumb password rule is from United Kingdom Post Office.Will not allow you to copy-paste your password into the text box (e.g. from a password manager). Because allowing people to copy their passwords over will defintely not result in weak passwords :)<a href="https://dumbpasswordrules.com/sites/united-kingdom-post-office/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/united-kingdom-post-office/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Rachael LJust ran into an account creation flow where it was rejecting my password. Among the like 6 bullet points of restrictions was this hilarious one: "Password must not contain space or unicode characters." <a href="https://freeradical.zone/tags/unicode" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#unicode</a> <a href="https://freeradical.zone/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a>

Dumb Password RulesThis dumb password rule is from Whitcoulls.Your password must: - be between 7 and 15 characters - contain a capital letter - have no spaces (shown only when you go to change it)<a href="https://dumbpasswordrules.com/sites/whitcoulls/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/whitcoulls/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

StanceOfMindFor someone who is supposed to be knowledgeable about these things, this clearly shows that Tulsi Gabbard isn't up to the job.<a href="https://www.wired.com/story/tulsi-gabbard-dni-weak-password/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.wired.com/story/tulsi-gabbard-dni-weak-password/</a> <a href="https://tech.lgbt/tags/TulsiGabbard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TulsiGabbard</a> <a href="https://tech.lgbt/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://tech.lgbt/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://tech.lgbt/tags/NationalSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NationalSecurity</a> <a href="https://tech.lgbt/tags/Passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Passwords</a> <a href="https://tech.lgbt/tags/TrumpAdministration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TrumpAdministration</a> <a href="https://tech.lgbt/tags/Politics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Politics</a>

Dumb Password RulesThis dumb password rule is from Citi.* Password is case-insensitive * Can't use ANY special characters (although, adding special characters increases the "password strength" meter?!) * Allows for a minimum password length of 6 characters * No runs of more than two identical characters (eg. "aaa" is not allowed.) * Does not allow you...<a href="https://dumbpasswordrules.com/sites/citi/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/citi/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

AI6YR Benblink182? password123? kaoihanamamua2004? thiswelldefend100? assistprotestdefend354? 1981Leloaloa?Wired: Tulsi Gabbard Reused the Same Weak Password on Multiple Accounts for Years <a href="https://www.wired.com/story/tulsi-gabbard-dni-weak-password/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.wired.com/story/tulsi-gabbard-dni-weak-password/</a><a href="https://m.ai6yr.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://m.ai6yr.org/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://m.ai6yr.org/tags/politics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#politics</a>

Dumb Password RulesThis dumb password rule is from Wells Fargo Identity Theft Protection.Your password on an Identity Theft Protection service is limited to between 8 and 20 characters. Your username is allowed to be longer than your password.<a href="https://dumbpasswordrules.com/sites/wells-fargo-identity-theft-protection/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/wells-fargo-identity-theft-protection/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Dumb Password RulesThis dumb password rule is from AmiAmi.Your password needs to be between 6 and 12 characters long, must contain only letters and numbers.<a href="https://dumbpasswordrules.com/sites/amiami/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/amiami/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Dumb Password RulesThis dumb password rule is from Banco Mercantil.8 to 15 chars. No special chars allowed but requires special chars. Also requires lowercase, uppercase, and numbers. Consecutive chars are prohibited. Did I mention the page hangs while you type? That eye icon tho.<a href="https://dumbpasswordrules.com/sites/banco-mercantil/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/banco-mercantil/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Dumb Password RulesThis dumb password rule is from American Airlines.- Between 6 and 16 characters<a href="https://dumbpasswordrules.com/sites/american-airlines/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/american-airlines/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Dumb Password RulesThis dumb password rule is from Copyright.gov.I wonder if they cooperate with NSA to enforce the password rules.<a href="https://dumbpasswordrules.com/sites/copyright-gov/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/copyright-gov/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Dumb Password RulesThis dumb password rule is from Sampath Bank.So many rules!<a href="https://dumbpasswordrules.com/sites/sampath-bank/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/sampath-bank/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Dumb Password RulesThis dumb password rule is from A1 Mobile Serbia.A1 mobile Serbia is a mobile provider in Serbia that imposes poor password rules.Translation: "Length of the password must be between 8 and 20 characters and can only have letters and digits."<a href="https://dumbpasswordrules.com/sites/a1-mobile-serbia/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/a1-mobile-serbia/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Code of Amor 💘Do you manage your parents online security? Or at least try to help them not get fucked over big time? I do. I encourage them to use the Bitwarden Vault I set up and maintain for them. They love it for getting passwords out. But then I see this shit and I remember my father never asks for help and doesn't like being told. Mum is the relative shining star here. And don't even get me started on the pisswater excuses they think pass for decent passwords. Fucksake, dad!!! <a href="https://social.codeofamor.net/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://social.codeofamor.net/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://social.codeofamor.net/tags/parents" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#parents</a>

Dumb Password RulesThis dumb password rule is from Sparda-Bank.Sparda is a group of German banks. They all use the same login form (except for Sparda-Bank Berlin, see below). Their equivalent of a password is called *Online-PIN*. As the name implies, only digits are allowed. (*Zifferneingabe* means "digit input"; it opens an on-screen number pad widget.)No...<a href="https://dumbpasswordrules.com/sites/sparda-bank/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://dumbpasswordrules.com/sites/sparda-bank/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumbpasswordrules</a>

Aaron Toponce ⚛️:debian:<a href="https://keepass.info" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://keepass.info</a> on mobile is just painful. It's like a badly broken dark mode. The only way to read text is to "Select All".<a href="https://fosstodon.org/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passwords</a>

knoppixSamsung's clipboard <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> flaw exposes all copied content, including passwords, as plain text indefinitely.Users are advised to avoid using the clipboard for sensitive <a href="https://mastodon.social/tags/information" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#information</a> until a fix is implemented.<a href="https://mastodon.social/tags/Samsung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Samsung</a> moderators acknowledge the issue and are considering enhancements for future updates.For now, consider using <a href="https://mastodon.social/tags/passkeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#passkeys</a> for secure authentication.Stay vigilant.<a href="https://www.tomsguide.com/computing/online-security/samsung-phone-security-flaw-leaves-passwords-exposed-protect-yourself-now" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.tomsguide.com/computing/online-security/samsung-phone-security-flaw-leaves-passwords-exposed-protect-yourself-now</a><a href="https://mastodon.social/tags/Technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Technology</a> <a href="https://mastodon.social/tags/TechNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TechNews</a> <a href="https://mastodon.social/tags/Tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Tech</a> <a href="https://mastodon.social/tags/DataProtection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataProtection</a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://mastodon.social/tags/Passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Passwords</a> <a href="https://mastodon.social/tags/Password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Password</a>

Recent searches

Search options

Administered by:

Server stats:

#passwords