Password-based authentication doomed by inherent flaws
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Model Credentials - T1589.001 Digital Certificates - T1596.003 Digital Certificates - T1587.003 Digital Certificates - T1588.004 Domains - T1583.001 Domains - T1584.001 Email Account - T1087.003 Hardware - T1592.001 Mmc - T1218.014 Multi-Factor Authentication - T1556.006 Password Cracking - T1110.002 Password Guessing - T1110.001 Password Managers - T1555.005 Phishing - T1660 Phishing - T1566 Private Keys - T1552.004 Python - T1059.006 Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Social Media Accounts - T1585.001 Social Media Accounts - T1586.001 Software - T1592.002 Web Services - T1583.006 Web Services - T1584.006 Tool - T1588.002 Brute Force - T1110 Private Keys - T1145
Show in Graph
Common Information
Type Value
UUID 6d9f6c20-16bb-4cbf-8de4-08e79cda6562
Fingerprint 2911293b097036fd
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 3, 2014, 5:06 a.m.
Added to db Jan. 18, 2023, 9:37 p.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline Doug Vitale Tech Blog
Title Password-based authentication doomed by inherent flaws
Detected Hints/Tags/Attributes 107/2/23
Source URLs
Redirection Url
Details Source https://dougvitale.wordpress.com/2014/09/03/password-based-authentication-doomed-by-inherent-flaws/
URL Provider
Details Provider Source level domain
Details wordpress.com dougvitale.wordpress.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
plentyoffish.com
Details Domain 14 
last.fm
Details Domain 89 
arstechnica.com
Details Domain 1 
cmu.edu
Details Domain 4 
computer.org
Details Domain 2 
ethicalhacker.net
Details Domain 2 
firstlook.org
Details Domain 3 
foofus.net
Details Domain 4128 
github.com
Details Domain 1 
isitcompromised.com
Details Domain 1 
hackingdojo.com
Details Domain 24 
hashcat.net
Details Domain 1 
no.spam.ee
Details Domain 1 
ntdsxtract.com
Details Domain 5 
pauldotcom.com
Details Domain 1 
plaintextoffenders.com
Details Domain 2 
pwnedlist.com
Details Domain 15 
research.microsoft.com
Details Domain 2 
skullsecurity.org
Details Domain 1 
teamsid.com
Details Domain 6 
toolswatch.org
Details Domain 33 
wired.com
Details Domain 1 
xato.net