Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Pew Research Study Exposes America's Poor Password Hygiene
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 2
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
1/31/2017 | 10:30:57 AM
No password
I am looking for those days that we do not have to use passwords, not helpful, not working, not functional, ...
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
1/30/2017 | 11:27:32 AM
Re: Americans Divided
@ryansepe: Seems Like a reasonable question to (1) either confirm or debunk a common presumption, and (2)provide good press-release fodder for thes tudy. ;)

more tot he point, though, I'm curious what their definition of a "youngeradult" is. 18-35? 18-29? 18-25? Big difference between a 35-year-old and a 25-year-old, IMHO.
BillB031
50%
50%
BillB031,
User Rank: Strategist
1/29/2017 | 11:36:08 AM
Re: Sharing Passwords
"Legally, their assistants may not be able to view the files that as a physician they are allowed to view"

 

Actually partially true.  As an x-ray tech, I was legally able to see anything the Radiologist (MD) could see including diagnosis, but only had access to "need to know" data.   For example, If I was performing a MRI to image a suspected brain tumor, I'd have to know what was going on to know what to look for, to get the best images for the Radiologist and Oncologist. 

So basically, as far HIPAA is concerned, you are allowed to see any patient info as long as it has something to do with your need to perform your job to assist the Doctor and Patient.  You also sign a non-disclosure agreement when you take these jobs, and violation of that agreement could end you up in jail.

 

I don't buy the Democrat vs Replubican bs.  I fully believe Apple cooperated with the Feds backdooring that iphone from the muslim terrorist, but had an agreement with the Feds to save face. 
szurier210
50%
50%
szurier210,
User Rank: Moderator
1/27/2017 | 3:24:59 PM
Re: Americans Divided
Study was much broader than password hygiene. Go further down in the story and link to the full report, you will see more in-depth info. 
RyanSepe
100%
0%
RyanSepe,
User Rank: Ninja
1/27/2017 | 12:20:21 PM
Americans Divided
"Democrats and younger adults tend to support strong encryption, while Republicans side with law enforcement."

I found it odd that this was a surveyed question on the topic of Password Hygiene.
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
1/26/2017 | 10:14:03 AM
Sharing Passwords
Its astounding the amount of people that share passwords. In a business context, I have found that even when their are legal implications this practice is more common then one would think. I've had physicians tell me that their password is to be given to their assistant as they are the ones who log into the machine. Legally, their assistants may not be able to view the files that as a physician they are allowed to view.
<<   <   Page 2 / 2


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Enterprise Cybersecurity Plans in a Post-Pandemic World
Download the Enterprise Cybersecurity Plans in a Post-Pandemic World report to understand how security leaders are maintaining pace with pandemic-related challenges, and where there is room for improvement.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-19551
PUBLISHED: 2021-09-21
Blacklist bypass issue exists in WUZHI CMS up to and including 4.1.0 in common.func.php, which when uploaded can cause remote code executiong.
CVE-2020-19553
PUBLISHED: 2021-09-21
Cross Site Scripting (XSS) vlnerability exists in WUZHI CMS up to and including 4.1.0 in the config function in coreframe/app/attachment/libs/class/ckditor.class.php.
CVE-2021-40847
PUBLISHED: 2021-09-21
The update process of the Circle Parental Control Service on various NETGEAR routers allows remote attackers to achieve remote code execution as root via a MitM attack. While the parental controls themselves are not enabled by default on the routers, the Circle update daemon, circled, is enabled by ...
CVE-2021-41084
PUBLISHED: 2021-09-21
http4s is an open source scala interface for HTTP. In affected versions http4s is vulnerable to response-splitting or request-splitting attacks when untrusted user input is used to create any of the following fields: Header names (`Header.name`&Atilde;&yen;), Header values (`Header.value`), Status r...
CVE-2021-23443
PUBLISHED: 2021-09-21
This affects the package edge.js before 5.3.2. A type confusion vulnerability can be used to bypass input sanitization when the input to be rendered is an array (instead of a string or a SafeValue), even if {{ }} are used.