Sign in / up

back to article Login creds for US agencies found scrawled on the web's toilet walls

A threat intelligence report into the availability of login credentials for US government agencies has identified 47 agencies across 89 unique domains may be compromised. The findings resulted from an analysis of open source intelligence (OSint) from 17 paste sites, carried out between 4 November 2013 and 4 November 2014. The …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Alistair
    Coat

    homeland security

    "count of domains without full 2FA"

    *sigh*

    why does the irony *NOT* surprise me?

    6 0 Reply
  2. Destroy All Monsters Silver badge
    Paris Hilton

    It's ok Gaius, just set the password to "permanenthardon", nobody will care...

    So why is El Reg punting RoTM-themed stories underneath the article?

    Something we should know?

    (And why do ancient icons reappear from time to time?)

    2 0 Reply
    1. dogged
      Reply Icon

      Re: It's ok Gaius, just set the password to "permanenthardon", nobody will care...

      > (And why do ancient icons reappear from time to time?)

      Because some people would rather dick around with the posting interface than do any work.

      2 0 Reply
  3. Richard Taylor 2
    Facepalm

    ha hah hah

    Require government employees to use stronger passwords and change with greater regularity

    Go on - randomly generated 12 character ascii as standard, renewed ever 3 weeks. Then they will simply be stored on post it notes (as seen recently ink one UK policing organisation)

    3 0 Reply
    1. Sir Runcible Spoon
      Reply Icon

      Re: ha hah hah

      Which would still be more secure than a static password that never changes and doesn't meet complexity standards.

      1 0 Reply
      1. Richard Taylor 2
        Reply Icon

        Re: ha hah hah

        I never suggested that - just been on the sharp end of users who are forced to relearn random passwords on a regular basis (and not just one). Why don't you go out and learn something.....

        0 0 Reply
  4. Mark 85

    Maybe certain laws need changing...

    No one tells the agency involved that passwords/login info has been posted. Interesting. Could it be that the agency will report them into some LEA as being one of those "evil hacker"?

    6 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like