How Many Sites Use Plain Text Passwords?
In the last couple of years, at least two popular web design sites have been hacked and had customer data stolen.
In 2014 it was iThemes, a WordPress company. In 2012, it was Envato, a marketplace for web design products.
In both cases the culprit was aMember, an application for running membership sites.
What was the problem? Until 2011, all aMember installations stored customer passwords in plain text. Once sites using aMember were compromised, customer data was easily stolen because it wasn't encrypted.
These hacks made me curious. I wondered whether aMember was alone. I did some digging to try and find out which popular applications use (or used) plain text passwords. Here's what I found ...
[[ This is a content summary only. Visit http://OSTraining.com for full links, other content, and more! ]]
In 2014 it was iThemes, a WordPress company. In 2012, it was Envato, a marketplace for web design products.
In both cases the culprit was aMember, an application for running membership sites.
What was the problem? Until 2011, all aMember installations stored customer passwords in plain text. Once sites using aMember were compromised, customer data was easily stolen because it wasn't encrypted.
These hacks made me curious. I wondered whether aMember was alone. I did some digging to try and find out which popular applications use (or used) plain text passwords. Here's what I found ...
[[ This is a content summary only. Visit http://OSTraining.com for full links, other content, and more! ]]
No comments have been added yet.
