Use Your Password Manager For Security Answers, Too

It’s been a while since I’ve had to type in some stupid answer to a made-up question when creating an account on a new service. You know what I’m talking about: Forget your password, and you can regain access to your account by typing in the name of your first pet (Mr Mrglglrm), your favourite sports team (Saskatoon Sirens), or the street you grew up on (Third Street).

Read mode

You Have No Excuses For Crappy Passwords Anymore

The password itself is crappy. It’s a fundamentally flawed mechanism for securing our accounts and data that should have died long ago. That means poorly crafted passwords are doubly bad. But with the release of iOS 12 and recent updates to Android, truly terrible passwords—your 123456, facebookpassw0rd, or dEadP3tsnAme—have lost all reason to exist.

Read more

Good Security Is In Our Heads

REA Group’s CISO Craig Templeton has been in the job for just a few months. While the information security business has been largely focussed on technical skills, Templeton told his team they needed to develop a new ability; the Jedi Mind Trick. I spoke with Templeton about this and some of the challenges he sees when it comes to security and privacy.

Read more