Dark Reading

Safely Storing User Passwords: Hashing vs. Encrypting

Over the past several months, we've seen major breaches exposing numerous usernames and passwords. The eBay and Adobe breaches impacted millions of accounts. Snapchat was compromised. With every ...
https//fedtechmagazine.com

What's the Difference Between Hashing and Encryption for Agencies?

Phil Goldstein is a former web editor of the CDW family of tech magazines and a veteran technology journalist. He lives in Washington, D.C., with his wife and their animals: a dog named Brenna, and ...
Computerworld

‘Hash Hunters’ Web service cracks password hashes for bitcoins

A search for “Hash Hunters” turns up marijuana-themed t-shirts for sale. It also brings up a password-cracking outsourcing service, payable in bitcoin. Fearing data breaches, Web services often store ...
Threat Post

Cryptographers Aim to Find New Password Hashing Algorithm

Passwords are the keys to our online identities, and as a result, they’re also near the top of the target list for attackers. There have been countless breaches in the last few years in which ...
ZDNet

MD5 password scrambler 'no longer safe'

The original author of the MD5 password hash algorithmhas publicly declared his software end-of-life and is "no longer considered safe" to use on commercial websites. This comes only a day after a ...
ZDNet

A quarter of major CMSs use outdated MD5 as the default password hashing scheme

Some of the projects that use MD5 as the default method for storing user passwords include WordPress, osCommerce, SuiteCRM, miniBB, SugarCRM, CMS Made Simple, MantisBT, Phorum, Observium, and X3cms.
Wired

Hacker Claims He Stole 4.5M LinkedIn Password Hashes

LinkedIn is investigating claims by a Russian hacker that he broke into the company's network and stole nearly 4.5 million password hashes for user accounts, according to a Twitter message the company ...