PRIVACY + SECURITY BLOG

News, Developments, and Insights

Cartoon: Dark Web

I hope you enjoy my latest cartoon about passwords on the Dark Web.  These days, it seems, login credentials and other personal data are routinely stocking the shelves of the Dark Web.  Last year, a hacker was peddling 117 million LinkedIn user email and passwords. And, late last year, researchers found a file with 1.4 billion passwords […]

Read More…

Epilogue to the St. Louis Cardinals Baseball Hacking Case

A while ago, I wrote about a case involving a member of the St. Louis Cardinals baseball team staff who improperly accessed a database of the Houston Astros.   There is now an epilogue to report in the case.  The individual who engaged in the illegal access — a scouting director named Chris Correa — […]

Read More…

The Funniest Password Recovery Questions and Why Even These Don’t Work

  A recent article in Wired argues that it is time to kill password recovery questions. Password recovery questions are those questions that you set up in case you forget your password. Common questions are: In what city were you born? What is your mother’s maiden name? Where did you go to high school? […]

Read More…

Passwords Cartoon – Security Awareness Training

Here’s a cartoon I created to illustrate the importance of security awareness training.  I hope you find it amusing. […]

Read More…

What Can We Learn From Bad Passwords?

By Daniel J. Solove The SplashData annual list of the 25 most widely used bad passwords recently was posted for passwords used in 2015.  The list is compiled annually by examining passwords leaked during a particular year.  Here is the list of passwords for 2015, and below it, I have some thoughts and reactions to […]

Read More…