This Week In Privacy: July 11, 2009

Government Computer News

With Passwords, Simplicity Can Equal Strength
We all know that ‘remembering’ complex passwords can be a bit troublesome, which is why we use password managers, but if you insist on keeping a few passwords to memory you may want to hear these tips.

Tips For Fighting Identity Theft
With all the info out there on how to protect your identity online, there’s no reason to keep your sensitive info unsafe anymore.

Bulk-Edit-Mania: Favorites and Security Level

So ya wanna bulk edit huh? Come get your bulk editing goodness here. You can now bulk set password favorties  and security level.

Bulk Favorites Window

To activate bulk editing, go to your Passwords tab and click the “Bulk edit your entries” link. Make your selection then use the Apply an action menu and away you go!

Don’t forget you can also bulk delete your passwords and send encrypted passwords to emails.

More to come! More to come my pretties.

This Week In Privacy: July 4, 2009

PC Advisor

Michael Jackson X-file Scam Steals Passwords
It’s no surprise that the death of the King of Pop has brought about a lot of media, but be careful while clicking on the latest links of Michael Jackson stories. Some of them may be password scams.

Mail Online

So why is the U.S. so eager to lock up the Asperger’s Syndrome hacker?
Here’s a look at the “biggest military computer hack of all time” and the man who has caught the eye of President Obama’s new security tsar.

Online Scams and Fraud Warning
When economic times are tough, new scams arise which is just what the FTC is warning Internet users about in a newly released video about web safety.

Passpack Nominated for TechCrunch Europas

Voting is now over – thanks to everyone who chipped in. Wow!

It’s a proud moment. Passpack has been nominated to the TechCrunch Europe award. So show your favorite password manager a little love.

Techcrunch UK
The Europas: Best Web Application Or Service       

Vote for Passpack

Wondering why we didn’t mention this last week? Well, maybe… we… um, didn’t notice right away that we’d been nominated [yikes!]. Apparently we’ve been working too hard on the upcoming autologin improvements. Ok, so you go vote and we’ll keep coding.

This Week In Privacy June 27, 2009

Who Should Reimburse ID Theft Victims?
One in five victims of identity theft are not reimbursed for their losses but who really pays the price of getting your personal information compromised.

delaware online

To Curb Identity Theft, 10 Tons of Documents Shredded
There are many ways to protect yourself against identity theft but here is an example of the tried and true method. Result: the shredding of 10 tons of documents!

Tips to Help You Spot Phishing Scams
Hopefully you are the one out of ten Americans who can spot a fake website or phishing scam and if you are not, here are a few tips to help get you there.

Two Bugs with One Stone

Thanks to Passpack user  Tim Robertson (aka FunkJedi) two bug fixes were rolled out yesterday: a misplaced Chrome back button alert, and the IE6 non-secure items alert.

Chrome Back Button Alert

As you may know, you should not use your browser’s back button with Passpack, because at best you’ll get logged out and have to log back in. At worst, you may loose any unsaved data. To avoid this, we use a Javascript library which simulates a disabled browser back button. When you click it, nothing seems to happen. If you click it a lot (like 7 times) then you get this warning:

Chrome Browser Back Button Alert

The problem Tim ran into was that Google Chrome was giving him that error even though he’d not clicked the back button. Then it would repeat every 3 minutes or so. This was an odd bug as both Francesco and I use Chrome, and neither one of us has ever run into this issue.

By changing a single call, Francesco was able to fix the problem. If you’re interested in the technical details, here’s what he said was happening.

IE6 Non Secure Items Alert

This is one of those bugs that has been driving us crazy for some time now.  All of Passpack’s images, Javascript, CSS and data travel over a secure https connection. Nonetheless, Explorer 6 was throwing up an alert that there were non-secure items on the page. We searched far and wide, but until now were not able to find the mysterious non-secure item.

While debugging the Chrome issue, Francesco discovered that the iframe the jQuery history plugin was attaching to the page body didn’t have a src attribute. That’s normal, but IE6 produces an error in these cases. So we added a src by modifying the plugin… and all is now fine and well.

Coming Soon: Auto-login 2.0

Passpack’s auto-login was introduced so far back into time that it’s hard to remember when it wasn’t there (just think – the first version didn’t even have 1 click login!). Now it’s time for an overhaul – and that’s what we’re working on right now.

The login and training failure rate when we first began was very low. Alas, it’s been growing, and now we can’t keep up with the requests coming through the help center for broken links. [oh boy that's trouble!]

So we’re upgrading the button. While we’re at it, here are some features that we’re building into the new version:

  1. Overhauling the Javascript which powers the button.
  2. Quick copy/paste options when a login fails
  3. Automatic reporting of broken auto-login URLs
  4. Double-click to add a Passpack entry directly from a registration page.

Will it Still Be Host-Proof Hosting?

Yes, yes, yes! The architecture remains the some same, we’re just rewriting the bricks.

What About a Plugin?

Following these improvements to the Auto-login, we’ll be working on a solution that’ll allow auto-login without having to open to the Passpack website everyday. That may or may not take the form of a browser plugin or toolbar. So stay tuned.

This Week In Privacy: June 20, 2009

Bozeman Demands Internet Passwords

Job applicants with the city of Bozeman are asking job seekers for the user names and even passwords to Internet social networking or Web groups they belong to. Is this policy going way too far?

EBay Enthusiast Shaken By Online Fraud, Tardy Response From Bank

Protecting your passwords is vital especially when they access your bank information. That´s what the fraud victim here learned the hard way when someone got access to her PayPal account and put through 22 transactions worth $5,325 in a single day.


Men Are Less Security Savvy Than Women

The battle of the sexes continues but this time in the Web World. Do men have weaker passwords than woman? Do they open email attachements with more nonchalance? Find out here.