An Interest In:
Web News this Week
- April 25, 2024
- April 24, 2024
- April 23, 2024
- April 22, 2024
- April 21, 2024
- April 20, 2024
- April 19, 2024
Some of Our Sources
- Techcrunch
- TutsPlus - Code
- Smashing Apps
- Inspiredology
- FanExtra - PSD
- Noupe
- Reencoded
- Android Headlines
- Willems Lab
- Dev To
Help Webnuz
Referal links:
September 21, 2012 09:03 pm GMT
There are reports circulating related to the security of users' Pandora passwords. It's not a password leak or an attack, however, but there's concern that passwords aren't being well secured on users' computers. Initially, word was that Pandora was storing cleartext passwords (meaning unencrypted) directly on users' hard drives, which would have been a major concern. Specifically, those passwords are being stored in the HTML5 local storage area for the www.pandora.com website. However, it appears that the passwords aren'tbeing stored in cleartext, but are encrypted using a single static encryption key which is the same for all users. While that's a step up from the earlier, more concerning situation, it's still a risk.
Original Link: http://feedproxy.google.com/~r/Techcrunch/~3/cu4CpGqZO-A/
Pandora Security Vulnerability Puts Some User Passwords At Risk [Update: Pandora Says Fix Coming]
There are reports circulating related to the security of users' Pandora passwords. It's not a password leak or an attack, however, but there's concern that passwords aren't being well secured on users' computers. Initially, word was that Pandora was storing cleartext passwords (meaning unencrypted) directly on users' hard drives, which would have been a major concern. Specifically, those passwords are being stored in the HTML5 local storage area for the www.pandora.com website. However, it appears that the passwords aren'tbeing stored in cleartext, but are encrypted using a single static encryption key which is the same for all users. While that's a step up from the earlier, more concerning situation, it's still a risk.Original Link: http://feedproxy.google.com/~r/Techcrunch/~3/cu4CpGqZO-A/
Share this article:
Tweet
View Full Article
Techcrunch
TechCrunch is a leading technology blog, dedicated to obsessively profiling startups, reviewing new Internet products, and breaking tech news.More About this Source Visit Techcrunch