Category: Security

Security articles that are posted on Lunarsoft. Articles relating to vulnerabilities, passwords, exploits, glitches and more.

apple logo

Apple blocks GrayKey on iOS 12

Earlier this year, Apple updated iOS to block passcode cracking tools like GrayKey (used by police and government law enforcement officers). But the original iOS 11.4.1 patch wasn’t perfect, with researchers still finding ways around it. That seems to have changed with the release of iOS 12 last month, which a recent Forbes report notes appears to have completely blocked the GrayKey tool, preventing...

Yahoo logo

Yahoo has to pay 50 million in damages

Yahoo has agreed to pay $50 million in damages and provide two years of free credit-monitoring services to 200 million people whose email addresses and other personal information were stolen as part of the biggest security breach in history. The restitution hinges on federal court approval of a settlement filed late Monday in a 2-year-old lawsuit seeking to hold Yahoo accountable for digital burglaries...

password logo

How secure is my password?

21st century chaos fills our lives with distractions, flashing lights, reminders, leaving many yearning to simplify aspects of our lives – but passwords should not be included in this. Taking a serious look at how you set up your password can make the difference between a strong barrier to your accounts or a paper thin wall that easily hacked. If your password doesn’t look...

Wireless keyboards and mice vulnerable

Wireless keyboards and mice vulnerable

In 2015, the two SySS employees Matthias Deeg and Gerhard Klostermeier started a research project about the security of modern wireless desktop sets using AES encryption, as there was no publicly available data concerning security issues in current wireless mice and keyboards. Thus, the two IT security consultants have been analyzing modern wireless desktop sets with AES encryption of the manufacturers Microsoft, Cherry, Logitech,...

microsoft logo

Microsoft is banning your stupidly easy-to-guess passwords

No matter how many times we tell you to change your passwords and make it anything but your birthday, “123456,” or “password,” many still aren’t taking the efforts to make their accounts more secure. So Microsoft is actively doing something about it by banning weak passwords entirely. The team calls it “dynamically banned,” which means that if your account uses a password that appears in the most-used/stolen...

Software vulnerability patching is too slow

Software vulnerability patching is too slow

Security holes and vulnerabilities are to be expected, but not enough is being done to patch holes quickly enough. This is the conclusion of Heimdal Security who conducted analysis of software vulnerabilities. The security firm found that while security problems are on the increase, companies are failing to keep pace and issues remain unaddressed for too long. It's something that hackers are taking advantage...

password logo

Throw out those bad passwords

California-based password management software specialist SplashData has released the results of its annual list of the internet’s worst passwords. For the first time “password” has been knocked off the number one slot. This doesn’t mean people are getting more security minded, however, as it’s been replaced by the equally obvious “123456”. SplashData compiles the list from files containing stolen passwords posted online during the...

password logo

KeePass nears password management perfection

Open-source password manager KeePass 2.24 has been released for Windows. The tool, which allows users to manage a variety of online and offline passwords via a secure, encrypted container, boasts a number of minor new features to go with an impressive list of changes and improvements for such an incremental release. First, KeePass 2.24 adds support for importing passwords from Norton Identity Safe 2013...

Why not to use autocomplete

Why not to use autocomplete

Today at Pubcon Matt Cutts of Google once again promoted the use of autocomplete-type, a new property for web forms that works in Chrome (and possibly other browsers, I haven’t checked). Google first introduced it back in January 2012 in this post. I wanted to do this quick post to tell you to turn off autocomplete in your browser. This test URL will show...

Internet threat level rises on expanded IE attacks

Internet threat level rises on expanded IE attacks

The Internet Storm Center on Saturday boosted its threat level to "Yellow," indicating a "significant new threat" to Internet users from attacks exploiting an unpatched vulnerability in all versions of Microsoft's Internet Explorer (IE) browser. "The Internet Storm Center is beginning to see increased evidence of exploits in the wild regarding Microsoft Security Advisory 2887505," the security organization said on its website. "Accordingly, we're...