| Piled Higher & Deeper by Jorge Cham | www.phdcomics.com | |
 | ||
title: "Staring contest" - originally published 3/14/2012 For the latest news in PHD Comics, CLICK HERE! | ||
Friday, March 16, 2012
03/14/12 PHD comic: 'Staring contest'
03/14/12 PHD comic: 'Staring contest':
Thursday, March 15, 2012
Wednesday, March 14, 2012
New study: Passwords are still the weakest link
New study: Passwords are still the weakest link: 
The latest review of security issues and trends is out, and we're sorry to say, folks: The rampant use of weak passwords still presents a serious security problem to end users and companies alike.
The recently-published Trustwave 2012 Global Security Report details the current threats to user data and identifies the vulnerabilities that persist within organizations. The statistics were generated from their investigation of about 300 breaches across 18 countries. They also analyzed the usage and weakness trends of more than 2 million real-world passwords used within corporate information systems. The verdict? After an initial foothold in a system (via malware and other threat vectors), 80% of security incidents were due to the use of weak administrative passwords.
Yes, that's correct: 80 percent. From weak passwords.
"The use of weak and/or default credentials continues to be one of the primary weaknesses exploited by attackers for internal propagation," the report comments. "This is true for both large and small organizations, and largely due to poor administration."
They found that writing down passwords is still prevalent in the workplace, particularly in organizations that implement complexity requirements, password expiration cycles, and password histories to prevent recycling of old passwords. While these policies are often implemented to improve password management, the reality is that increasing password complexity directly corresponds with a decrease in memorability, hence the insecure practice of writing down passwords. The report found that in 15% of the security tests performed, written passwords were found on or around user work stations.
What's even more astonishing is that rather than find a tool that can help with the password problem, users are getting creative in overriding the policies meant to enforce the use of strong passwords. They exploit loopholes such as:
In another alarming example, the report highlights Active Directory's policy of password complexity, which states that a password is required to have a minimum of eight characters and three of the five character types (Lower Case, Upper Case, Numbers, Special, Unicode). Guess what meets those requirements? "Password1", "Password2", and "Password3", the first being the most widely used across the pool of two million passwords studied in the report.
The top 10 passwords identified by the study were:
Other keywords included:
In some ways, we're impressed by the creative effort people put into avoiding strong passwords while still operating within the "complexity requirements" imposed on them.
However, moving forward into 2012 and beyond, it's clear there are steps both end users and businesses should be taking to change their password habits, prioritizing:
Best,
The LastPass Team
The latest review of security issues and trends is out, and we're sorry to say, folks: The rampant use of weak passwords still presents a serious security problem to end users and companies alike.The recently-published Trustwave 2012 Global Security Report details the current threats to user data and identifies the vulnerabilities that persist within organizations. The statistics were generated from their investigation of about 300 breaches across 18 countries. They also analyzed the usage and weakness trends of more than 2 million real-world passwords used within corporate information systems. The verdict? After an initial foothold in a system (via malware and other threat vectors), 80% of security incidents were due to the use of weak administrative passwords.
Yes, that's correct: 80 percent. From weak passwords.
"The use of weak and/or default credentials continues to be one of the primary weaknesses exploited by attackers for internal propagation," the report comments. "This is true for both large and small organizations, and largely due to poor administration."
They found that writing down passwords is still prevalent in the workplace, particularly in organizations that implement complexity requirements, password expiration cycles, and password histories to prevent recycling of old passwords. While these policies are often implemented to improve password management, the reality is that increasing password complexity directly corresponds with a decrease in memorability, hence the insecure practice of writing down passwords. The report found that in 15% of the security tests performed, written passwords were found on or around user work stations.
What's even more astonishing is that rather than find a tool that can help with the password problem, users are getting creative in overriding the policies meant to enforce the use of strong passwords. They exploit loopholes such as:
- Setting usernames as the password when complexity requirements aren't forced
- Adding simple variations to fit complexity requirements, such as capitalizing a letter and adding an exclamation point to the end
- Using dictionary words or applying simple modifications
In another alarming example, the report highlights Active Directory's policy of password complexity, which states that a password is required to have a minimum of eight characters and three of the five character types (Lower Case, Upper Case, Numbers, Special, Unicode). Guess what meets those requirements? "Password1", "Password2", and "Password3", the first being the most widely used across the pool of two million passwords studied in the report.
The top 10 passwords identified by the study were:
- Password1
- welcome
- password
- Welcome1
- welcome1
- Password2
- 123456
- Password01
- Password3
- P@ssw0rd
Other keywords included:
In some ways, we're impressed by the creative effort people put into avoiding strong passwords while still operating within the "complexity requirements" imposed on them.
However, moving forward into 2012 and beyond, it's clear there are steps both end users and businesses should be taking to change their password habits, prioritizing:
- Education of employees on basic security practices
- Tracking of company data and pinning it to an individual every time
- Standardizing implementation across all platforms and devices
- The implementation of a password management tool that makes it easy to maintain high security standards.
Best,
The LastPass Team
Tuesday, March 13, 2012
Evidence of Lost Da Vinci Fresco Behind Florentine Wall
Evidence of Lost Da Vinci Fresco Behind Florentine Wall:
Lev13than writes "Art historians working in Florence's city hall claim to have found evidence of Leonardo da Vinci's lost Battle of Anghiari fresco. Painted in 1505, the fresco was covered over by a larger mural during mid-16th Century palace renovations. Historians have long speculated that the original work was protected behind a false wall. Attempts to reveal the truth have been complicated by the need to protect Vasari's masterpiece Battle of Marciano that now graces the room. By drilling small holes into previously-restored sections of Vasari's fresco, researchers used endoscopic cameras and probes to determine that a second wall does exist. They further claim that the hidden wall is adorned with pigments consistent with Leonardo's style. The research has set off a storm of controversy between those who want to find the lost work and others who believe that it is gone, and that further exploration risks destroying the existing artwork."
Read more of this story at Slashdot.
Lev13than writes "Art historians working in Florence's city hall claim to have found evidence of Leonardo da Vinci's lost Battle of Anghiari fresco. Painted in 1505, the fresco was covered over by a larger mural during mid-16th Century palace renovations. Historians have long speculated that the original work was protected behind a false wall. Attempts to reveal the truth have been complicated by the need to protect Vasari's masterpiece Battle of Marciano that now graces the room. By drilling small holes into previously-restored sections of Vasari's fresco, researchers used endoscopic cameras and probes to determine that a second wall does exist. They further claim that the hidden wall is adorned with pigments consistent with Leonardo's style. The research has set off a storm of controversy between those who want to find the lost work and others who believe that it is gone, and that further exploration risks destroying the existing artwork."
The Quest For Perfect Mashed Potatoes
The Quest For Perfect Mashed Potatoes:
I recently attended a wonderful wine tasting called the Seattle Food and Wine Experience. This annual event features producers from Washington, Oregon and California, along with brewers and hand-crafted distillers.
The dazzling lineup is complemented by impressive food from some of the regions' best chefs, who create dishes designed to pair with wine. One of the most memorable bites I tried was from the mashed potato bar, a lineup of several types of spuds simply smashed and topped with various savories.
I absolutely love mashed potatoes. It was a big bummer when that trend faded away, making way for all manner of mac-and-cheese. But I make them often at home, especially with St. Patrick's Day on the horizon. Can't fight the Irish in my family tree.
I've tried various approaches, cranking them through ricers, using old-fashioned mashers, even pulsing them in the food processor. But nothing works quite as well as my trusty hand mixer. The trick is not to over-whip or they turn glue-y. I don't mind a few lumps.
And when it comes to the liquid to mash them with? I've tried cream and buttermilk. Olive oil and stock work just fine. But whole milk seems to lead to the fluffiest mashed potatoes. And if they're seasoned just right, with a generous pinch or two of sea salt, then all I really need to complete this picture of happiness is a little butter on top.
-- Leslie Kelly
I recently attended a wonderful wine tasting called the Seattle Food and Wine Experience. This annual event features producers from Washington, Oregon and California, along with brewers and hand-crafted distillers.
The dazzling lineup is complemented by impressive food from some of the regions' best chefs, who create dishes designed to pair with wine. One of the most memorable bites I tried was from the mashed potato bar, a lineup of several types of spuds simply smashed and topped with various savories.
I absolutely love mashed potatoes. It was a big bummer when that trend faded away, making way for all manner of mac-and-cheese. But I make them often at home, especially with St. Patrick's Day on the horizon. Can't fight the Irish in my family tree.
I've tried various approaches, cranking them through ricers, using old-fashioned mashers, even pulsing them in the food processor. But nothing works quite as well as my trusty hand mixer. The trick is not to over-whip or they turn glue-y. I don't mind a few lumps.
And when it comes to the liquid to mash them with? I've tried cream and buttermilk. Olive oil and stock work just fine. But whole milk seems to lead to the fluffiest mashed potatoes. And if they're seasoned just right, with a generous pinch or two of sea salt, then all I really need to complete this picture of happiness is a little butter on top.
-- Leslie Kelly
Monday, March 12, 2012
Time — With Robert the Plant!
Time — With Robert the Plant!:
It’s the very best of Robert the Plant!!
As I’m working on my mysterious graphic novel this week(more details soon!), please enjoy the craziness that is Robert! New strips return next week!
Thanks, friends!
-Lucas
Don’t forget the new book “Toys in the Attic” is now for sale! Head on over to the store and get your copy of either the Artist Edition, or the Regular Edition, today!
It’s the very best of Robert the Plant!!
As I’m working on my mysterious graphic novel this week(more details soon!), please enjoy the craziness that is Robert! New strips return next week!
Thanks, friends!
-Lucas
Don’t forget the new book “Toys in the Attic” is now for sale! Head on over to the store and get your copy of either the Artist Edition, or the Regular Edition, today!
Sunday, March 11, 2012
Friday, March 09, 2012
Thursday, March 08, 2012
Launching a LEGO Space Shuttle in Space [Video]
Launching a LEGO Space Shuttle in Space [Video]:
Related posts:
The launch took place from central Germany (easy flight clearance) and reached a max altitude of 35000m. A 1600g meteo balloon filled with helium was used alongside a GoPro Hero, Spot GPS and of course Lego Space Shuttle model 3367.[Via Laughing Squid]
We launched it on the 31st of December 2011, the equipment was recovered via GPS tracking 240 km S-E from a remote area.
Related posts:
- Space Shuttle Program Turns 30, Employees Hang Out in Parking Lot [Video]
- Chance Meeting with a Space Shuttle
- Space Shuttle Destroyed
Monday, March 05, 2012
Sunday, March 04, 2012
Saturday, March 03, 2012
Friday, March 02, 2012
Sunday, February 26, 2012
Friday, February 24, 2012
The Periodic Table Table [Video]
The Periodic Table Table [Video]:
Some people collect stamps. Wolfram Research co-founder and author Theo Gray collects elements. Step into his office, and you’ll see a silicon disc engraved with Homer Simpson, a jar of mercury, uranium shells and hundreds of other chemical artifacts. But his real DIY masterpiece is the world’s first “periodic table table.” Within this masterfully constructed table-top lay samples of nearly every element known to man, minus the super-radioactive ones.
[Via Videosift]
Related posts:
- The Periodic Table of… Cupcakes? [Pic]
- Om Nom Nom Nom: The Periodic Table of Cupcakes [Pic]
- Meet the Elements: A musical infographic about the periodic table of elements
Thursday, February 23, 2012
Worf is Always Wrong [Video]
Worf is Always Wrong [Video]: 
Star Trek: The Next Generation ran for seven seasons, and in this more culturally accepting future version of Star Trek, even the violent Klingons were members of the Federation. Worf was the first Klingon to be a lead character in a Star Trek franchise, and has appeared in more episodes than any other Star Trek character.
The only reason I bring up all that trivia is that I wonder exactly how he lasted that long. Check out this 15-minute video of all the scenes in which Worf’s impulsive suggestions get shot down.
Clearly his assessments are very often short sighted and rejected very quickly by those around him. I understand his Klingon impulses are very hard to resist and often his reactions involve violence. How did he get promoted when he instinctively wants to solve every problem with a proton torpedo?
Oh, we love you Worf. Even if everything you say is wrong.
Related posts:
- Klingon for Dummies: Lesson #1 [VIDEO]
- Commander Worf Thinks He’s Beautiful
- Klingon for Dummies: Lesson #2 [Video]
Wednesday, February 22, 2012
Faulty Cable To Blame For Superluminal Neutrino Results
Faulty Cable To Blame For Superluminal Neutrino Results: smolloy writes "It would appear that the hotly debated faster-than-light neutrino observation at CERN is the result of a fault in the connection between a GPS unit and a computer. This connection was used to correct for time delays in the neutrino flight, and after fixing the correction the researchers have found that the time discrepancy appears to have vanished."
Read more of this story at Slashdot.
Tuesday, February 21, 2012
Monday, February 20, 2012
![[link]](http://i.imgur.com/Ab9aZ.jpg){kind=link}
Subscribe to:
Posts (Atom)