Don't let them paste passwords... (February 18, 2017)
2fa multi-factor authentication biometrics security passwords paste disable paste password managers

PwnPhone: Default passwords allow covert surveillance. (February 13, 2016)
snom cisco security privacy csrf covert surveillance voip remote control default passwords passwords authentication breach

Roboform Security Revisited: Lies, Deception & Misnomers. (January 22, 2015)
aes data encryption infosec password manager passwords privacy roboform security 2fa authentication

Password Managers: Facts, Fallacies & FUD (November 28, 2014)
1password aes aes128 aes256 decryption encryption keepass lastpass password manager passwords roboform security 2fa 2sv two factor authentication directpass passwordbox dashlane

The difference between two-factor and two-step authentication. (September 18, 2014)
hacked passwords security totp hotp otp 2fa 2sv two factor authentication two step verification authentication

Virgin Media: You're only as secure as your weakest link. (August 31, 2014)
decryption dpa encryption hashing insecure passwords security virgin media vulnerable breaches hack - Really bad #infosec advice. (January 17, 2014)
banking encryption hashing infosec passwords pbkdf2 safety security shopping ssl wifi

CashPlus: "It is secure" - Ooooh no it isn't. (July 20, 2013)
cashplus cookies encryption insecure passwords security ssl

Forgot your password? You're doing it wrong. (July 16, 2013)
1password aes128 aes256 encryption HMAC keepass lastpass passwords pbkdf2 security ssl Security - Missing a vital ingredient? (March 12, 2013)
acl cookies mydish passwords security sqli ssl xsrf xss