'Forgot Your Pasword?' May Be Weakest Link
Is the age old “Forgot Your Password†link actually be a security risk? Think about it, how much information is there about you on the web right now? Could your forum postings, Facebook or MySpace help someone get your passwords?
Is the age old “Forgot Your Password†link actually be a security risk? Think about it, how much information is there about you on the web right now? Could your forum postings, Facebook or MySpace help someone get your passwords?
As an experiment, Herbert Thompson, chief security strategist of People Security, recently asked a few friends for permission to "hack" into their bank accounts. Using only information gathered from Web sites, Thompson found his way in within minutes. "This is a serious problem. It kind of blew me away," Thompson said.