Slashdot Mirror

← Back to Stories (view on slashdot.org)

Top E-commerce Sites Fail To Protect Users From Stupid Passwords

Posted by timothy on from the use-uno-dos-tres-instead dept.

Martin S. writes "The Register reports that 'Top UK e-commerce sites including Amazon, Tesco and Virgin Atlantic are not doing enough to safeguard users from their own password-related foibles, according to a new study by Dashlane ... 66% accept notoriously weak passwords such as '123456' or 'password,' putting users in danger as these are often the first passwords hackers use when trying to breach accounts. ... 66% make no attempt to block entry after 10 incorrect password entries (including Amazon UK, Next, Tesco and New Look). This simple policy prevents hackers from using malicious software that can run thousands of passwords during log-ins to breach accounts.'" xkcd has some insight about why this is bad for users generally, not just on any sites that happen to get compromised. Rules that require ever more complexity in passwords, though, probably backfire quite a bit, too.

1 of 162 comments (clear)

  1. Re:not really a huge deal... by Anonymous Coward · · Score: 0, Flamebait

    Yes, "then" people think. You fucking idiot. You AMERICAN idiot.

    Do you actually NOT know what the words "then" and "than" mean? You fucking AMERICAN idiot.

    I would rather kill myself THEN go ice skating. That's the sort of moronic statement AMERICANS make every day, because they are so stupid and lazy they can't even understand what two simple, four letter words mean.