April 25, 2010
Hello everybody,
recently I installed Sticky Password on my computer. I love this software for the ability to fast fill login forms. Couple days ago from my Yahoo account some spam email was sent to people from my address book. Is a password manager a reliable solution? Do you have any experience with Sticky Password or any knowledge about how the hacking into my account was possible? I have my Facebook account linked to my Yahoo address, and sometime I am just following the link from my email to login automatically to Facebook. I know that Facebook had some problem couple weeks ago, so I am thinking about the possibility to be compromised this way as well.
I changed my password to Yahoo and Facebook, and I did a security scan with BitDefender, MalwareBytes, and SuperAntySpyware. No malware was found. Prior to this I had only SuperAntySpyware and Outpost Firewall Pro as my security software. Are there any additional steps I should take in order to secure my privacy?
Thank you.
August 9, 2011
Hey coolczone - Yes, most password managers are very reliable/safe and Sticky Passwords is well respected. However, password managers are designed to protect passwords stored on the computer only, the critical element is choosing strong passwords in the first place. This entire security issue is wholly dependent on the strength of the passwords; those used generally and, in the case of spyware, the master password required to access the password manager itself.
I can understand your concern, the proximity of installing Sticky Passwords and the actual incident, but I am pretty certain it is more than likely mere coincidence. It's possible but unlikely that your password was hacked locally (per medium of spyware), more likely externally. There are 101 ways accounts can be hacked externally and the most common cause is weak passwords - have a read through [url=http://ask-leo.com/how_do_i_keep_from_getting_my_account_hacked.html:23s93zl7]HERE.[/url:23s93zl7]
As for your security setup; I can't see any mention of resident anti-virus software. SuperAntiSpyware (paid) is anti-spyware only and SuperAntiSpyware (free) does not include any real time protection at all. Outpost Firewall is an excellent firewall but is meant as a supplement to anti-virus - as well as, not instead of. You should install a good anti-virus as soon as possible, I can thoroughly recommend Avast Free Anti-virus.
Cheers...Jim
April 25, 2010
Hi ozbloke,
Your advice is always in time. I just installed an antivirus software on my computer, and hopefully nothing bad will happen anymore. How vulnerable is my password database against hacking? (I hope you will say as vulnerable as my Master Password), and in what ways my Master Password could be stole?
Thank you,
ciprian
August 9, 2011
[quote:2fduhmv8]How vulnerable is my password database against hacking? (I hope you will say as vulnerable as my Master Password)[/quote:2fduhmv8]
LOL. That's exactly what I am going to say...how did you know. LOL. Yes Ciprian, the master password is your ultimate security, make sure it is good and strong, and your database of passwords will be very safe.
[quote:2fduhmv8]and in what ways my Master Password could be stole?[/quote:2fduhmv8]
Only by spyware designed specifically to identify passwords or record keystrokes. With your now added security, If you choose a very strong master password, keep it to yourself and don't use the same one anywhere else that shouldn't be an issue.
Cheers now...Jim
April 25, 2010
Thank you Jim,
Ciprian
February 27, 2010
I have to add that I'm very happy with Sticky Password. I was using LastPass before but feel much safer with the database on my computer rather than in the cloud where I can keep an eye on it.
August 9, 2011
Good point TeXaCo.
October 14, 2011
Hello,
RoboForm is the number one most trusted and downloaded password manager in the world. http://www.roboform.com
We have a free 30 day trail on our Web site as well as a desktop version, Everywhere version, and 2go version.
Check us out on Facebook: http://www.facebook.com/roboform
Check us out on Twitter: Tweets by roboform
Michelle
October 14, 2011
I tried your posted link for testing password strengths, but got a very different result than I did at the Microsoft site. https://www.microsoft.com/security/pc-s ... =Site_Link
Got any thoughts on that?
August 9, 2011
You're probably going to always get different results from different online testing tools. Depends entirely on the parameters set at their end. I have noticed that the password strength meter on the DCT site is a tad harsher than many, but with security matters is it not better to err on the side of caution.
October 14, 2011
Thanks ozbloke. Appreciate the tip.
February 27, 2010
[quote="SiberSystems":1ut7xlul]Hello,
RoboForm is the number one most trusted and downloaded password manager in the world. http://www.roboform.com
We have a free 30 day trail on our Web site as well as a desktop version, Everywhere version, and 2go version.
Check us out on Facebook: http://www.facebook.com/roboform
Check us out on Twitter: Tweets by roboform
Michelle[/quote:1ut7xlul]
You know what would be great.....if roboform worked with Davescomputertips to host a giveaway of Roboform.
August 9, 2011
Yep, we're working on it TeXaCo. A request has already been sent.
February 27, 2010
Very nice, that's great to hear.
December 1, 2011
If you want probably one of the best Free ones, I suggest Keepass, (http://keepass.info).
I know a BUNCH of CISSPs and GIAC GSEC people and they all seem to use this program for storing their passwords for just about everything. It's like all the others where you can take it on a smartphone or any of that.
Nice freebie in my opinion and definitely secure.
1 Guest(s)
