I am always pissed off when I discover that a site I use is a plaintext offender. Well, if they are mom and pop establishments that do not deal with money or personal data, I might exhibit a wee bit of tolerance. However, large cooperations have no excuse especially since salting and hashing is such a simple operation. Some sites I have come across include WileyPlus, the online teaching environment as well as surprise, surprise, the submission portal for the International Journal of Information Security(IJIS). You think that with so many postgrad security majors submitting their papers, someone would have raised a stink over it.
IJIS plaintext offender
Tags:
Security
Similar Articles
Email fraud - A fraudster managed to email his way out of prison. Article here. The amount of trust that a lay person puts into emails today is quite alarming. Emails were first used in the 70s, when everyone ...
1FA - Applications such as Pushbullet strive to integrate our devices by mirroring notifications received on an android phone onto a windows laptop. I can read and even reply SMSes without the need to ...
iPad POS - While traveling in the US, I noticed that a considerable number of smaller food establishments used an iPad Point of Sale (POS) system. Given the number of POS vulnerabilities reported in the ...
Information Leakage - Piazza is a learning management system that allows students to post questions which are then answered by fellow students or the lecturer. One of the features of Piazza is anonymous posting where ...