Before we go into this article I should note: YES, this is based on a true security assessment we did (and shows how simple it can be sometimes) and YES the vulnerabilities have since been patched. All identifiable company information has been altered. It all started with a security assessment we were doing for a
A team of security researchers at Dashlane, a password security company with similar services like Lastpass, has analyzed close to 50 online services on their password practice. They’ve analyzed big companies like Spotify, Uber, GoDaddy, etc. and let’s say they’re not all quite as secure when it comes to their password policies.