Security

Cool Tool Helps You Check Passwords Against Security Breaches

If you’re wondering whether or not your passwords have been scooped up by hackers who have carried out digital attacks like identity theft, there’s a new tool from 1Password that will tell you if your passwords have been leaked.

Learn what this tool does and some other ways to keep your passwords safe.

Integration with 1Password
The popular password manager 1Password recently integrated the tool, which checks whether or not your passwords are public property now. 1Password manager developers added the tool after security researcher Troy Hunt announced his latest version of “Pwner Passwords,” which is a search tool that displays more than 500 million passwords that have been leaked in data breaches.

How the Tool Works
It works like this–1Password looks at your password using SHA-1, a cryptographic tool that encrypts passwords into 40 characters, sending only the first 5 characters to maintain security and anonymity.

Following this step, the server sends back a list of leaked passwords in encrypted form that shows the first 5 characters as yours. After this, 1Password compares the list locally to determine if the full 40 characters of your password shows up. If there is a match, you’ll be notified and asked to change your password.

Customers who have 1Password.com accounts can use the tool online by inputting Shift-Control-Option-C (or Shift+Ctrl+Alt+C in Windows) to unlock the proof of concept. You will then be taken to a “Check Password” button next to your passwords.

Smart Password Practices
Make sure your password is complex and random, containing eight characters, with at least one upper- and one lower-case letter and a special character such as a dollar sign or the pound sign. Also, ensure your numbers and symbols are separate for maximum security. Avoid sharing any personal information in your password such as a loved one’s name, your last name or your address.

Also, don’t use dictionary words. A random combinations of numbers, symbols and letters is more effective. Using different passwords for different accounts is key as it protects you from being hacked and having all your accounts compromised.

Finally, don’t write down your password unless you really have to, so keep it under 10 characters to make it easier to memorize.

PSafe Newsroom

The dfndr blog is an informative channel that presents exclusive content on security and privacy in the mobile and business world, with tips to keep users protected. Populated by a select group of expert reporters, the channel has a partnership with dfndr lab's security team. Together they bring you, first-notice news about attacks, scams, internet vulnerabilities, malware and everything affecting cybersecurity.