@BleepingComputer my favorite: #keepass not among six major password managers shown to be vulnerable to clickjacking: https://www.bleepingcomputer.com/news/security/major-password-managers-can-leak-logins-in-clickjacking-attacks/
anybody knows?
Boardroom security talks always have:
MFA advocates Phishing trainers
The “password spreadsheet” guy
Security basics matter. MFA + phishing awareness + strong passwords block the majority of breaches.
What’s the worst advice you’ve heard in a security meeting?
#CyberSecurity #MFA #Phishing #PasswordSecurity
Do You Know How to Secure Your Passwords Using Bitwarden?
Jetty Nakamoto(@22f7161f), Bitcoin educator and content creator behind Bitcrazy YouTube Channel, has broken down an easy and effective way to secure your passwords using Bitwarden, a trusted open-source password manager.
Learn in Simple Language — No tech background needed!
Watch Now: https://youtu.be/WF5fWCwYxQ4?si=ZGQvldGgCYylXEy4
Why password security is crucial 
How Bitwarden keeps all your logins safe 
How to set it up and use it on your phone or computer 
How to create strong, unique passwords for each site Subscribe to the Bitcrazy YouTube Channel Like the video if you found it helpful Comment your experience or questions Share with your friends and family 
Always!Weak or compromised passwords are still one of the most common ways attackers get into an organisation’s network.
That’s why running password audits in Active Directory is so important. But smaller companies often don’t have the time, budget, or resources to do them regularly.
Our latest blog post gives you a step-by-step guide to run a proper password audit using free tools available online.
Read here: https://www.pentestpartners.com/security-blog/how-to-conduct-a-password-audit-in-active-directory-ad/
Why do audits and training matter?
Without regular audits to spot gaps, and proper staff training on how to create strong, secure passwords, breaches can and do happen. Technical tools alone won’t stop them.
In most cases, the weakest part of the system isn’t the technology, it’s the people using it. That’s why it is important to train users on how to set strong passwords, which can then be audited.
New Open-Source Tool Spotlight 
Hashcat supports over 300 optimized hashing algorithms and runs on CPUs, GPUs, and accelerators across Linux, Windows, and macOS. Five attack modes make it a versatile password recovery tool. #hashcat #passwordsecurity
Project link on #GitHub 
https://github.com/hashcat/hashcat
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— 
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 
Ich habe eben den legendären "correct-horse-battery-staple" https://xkcd.com/936/ mit aktuellen Zahlen (Annahmen von https://www.hivesystems.com/blog/are-your-passwords-in-the-green sind ca 112.000 bcrypt-Hashes/Sek) durchgerechnet: Die vier Worte schrumpfen inzwischen auf 5 Jahre Angriffszeit. Mit fünf Worten landet man bei über 10.000 Jahren.
Nehmt fünf Worte.
Modern Password Security Threats: Protecting Your Digital Identity 
Cybercriminals use sneaky techniques to crack passwords and gain access to accounts. Here are the most common attacks:
Brute Force – Tries every possible password
Dictionary Attack – Uses common words & phrases
Rainbow Table – Cracks password hashes
Shoulder Surfing – Spies on you while typing
Keylogging – Records everything you type
Password Spraying – Tests common passwords on many accounts
Social Engineering – Tricks you into revealing passwords
Phishing – Fake emails & websites steal your login
Credential Stuffing – Uses leaked passwords from breaches
Man-in-the-Middle – Intercepts data over networks
Stay Safe! Use strong, unique passwords, enable 2FA, and beware of phishing scams.
Which attack surprised you the most? Let’s discuss in the comments! 
This content is shared strictly for educational and informational purposes only. 
All information is provided to help individuals and organizations better protect themselves against security threats. 
The techniques discussed are presented solely to improve awareness and defensive measures, not to facilitate any unauthorized access.
Bitwarden vs LastPass 2025: Which Password Manager Is Better? – Source: www.techrepublic.com https://ciso2ciso.com/bitwarden-vs-lastpass-2025-which-password-manager-is-better-source-www-techrepublic-com/ #rssfeedpostgeneratorecho #SecurityonTechRepublic #SecurityTechRepublic #Passwordmanagement #CyberSecurityNews #passwordsecurity #passwordmanager #Bitwarden #LastPass #password #Security #Software
Stopping MFA Fatigue Attacks Before They Start: Securing Your Entry Points – Source: securityboulevard.com https://ciso2ciso.com/stopping-mfa-fatigue-attacks-before-they-start-securing-your-entry-points-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #CyberSecurityNews #SecurityBoulevard #passwordsecurity #Identity&Access #MFA
AD Lite Password Auditor Report: Key Insights and Data – Source: securityboulevard.com https://ciso2ciso.com/ad-lite-password-auditor-report-key-insights-and-data-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #credentialscreening #CyberSecurityNews #SecurityBoulevard #passwordsecurity #ActiveDirectory #Identity&Access
𝗗𝘆𝗻𝗲 
𝗦𝗽𝗵𝗶𝗻𝘅
SPHINX is a simple, elegant, & unconditionally secure zero-trust password manager. It stores a random numbers, not your password, ensuring the server knows nothing. Free, offline-bruteforce resistant, self-hostable, and extensible.
Built on a well-studied #cryptographic algorithm by respected experts, SPHINX brings password management into the 21st century.
𝗜𝗻 𝗳𝗮𝗰𝘁 𝘄𝗲 𝗹𝗼𝘃𝗲 𝗶𝘁 𝘀𝗼 𝗺𝘂𝗰𝗵 𝘁𝗵𝗮𝘁 𝘄𝗲 𝗮𝗿𝗲 𝗵𝗼𝘀𝘁𝗶𝗻𝗴 𝗮 𝗽𝘂𝗯𝗹𝗶𝗰 𝘀𝗲𝗿𝘃𝗲𝗿!
I want a password manager that is secure, FLOSS, and syncs across devices and platforms.
Any suggestions?
Rethinking Credential Security – Source: securityboulevard.com https://ciso2ciso.com/rethinking-credential-security-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #CyberSecurityNews #SecurityBoulevard #passwordsecurity #accounttakeover #ActiveDirectory #Identity&Access #threatintel
Achieving CyberSecure Canada Certification – Source: securityboulevard.com https://ciso2ciso.com/achieving-cybersecure-canada-certification-source-securityboulevard-com/ #rssfeedpostgeneratorecho #RegulationandCompliance #SecurityBloggersNetwork #credentialscreening #CyberSecurityNews #SecurityBoulevard #passwordsecurity #accounttakeover #ActiveDirectory #Identity&Access
Okta Verify Agent Windows Flaw Let Attackers Steal User Passwords https://cybersecuritynews.com/okta-verify-agent-windows-flaw/ #CyberSecurityNews #PasswordSecurity #CyberSecurity #Vulnerability #cybersecurity #OktaVerify #Windows
It’s important to use strong and unique #passwords for all our online accounts, but very hard to remember them all…
For #CyberSecMonth, Raf Gillisjans, security analyst at the Belgian research and education network Belnet, tells us about the benefits of using a #PasswordManager.
Your email can be used to both reset and recover access to all other services, so it's extremely important to use a strong and memorable #password for it.
David Heed ( @sunet ) joins our #CyberSecMonth campaign, sharing some tips about #PasswordSecurity.
https://connect.geant.org/csm24
@nordunet #CSM24 #CyberSecurityAwareness #Research #Education #NRENs #Cybersecurity #PasswordManagers
#CybersecurityMonth Day 2: Your password is your first line of defense. Are you using a password manager like 1Password? It enables you to have strong, unique passwords for each account without needing to remember them all. #PasswordSecurity #CybersecurityAwarenessMonth
What does your password manager set up look like?
This can be useful for demonstration purposes: Securely hash and verify passwords. https://ullenboom.de/bcrypt/
#cryptography #PasswordSecurity #HashingAlgorithm #Programming
