Analysis: eHarmony Had Several Password Security Fails

« Dating Factory: 100% Summer Promotion | Main | Twoo.com Goes Mobile »

Analysis: eHarmony Had Several Password Security Fails

CNET NEWS - June 26 - An analysis of passwords stolen from eHarmony and leaked to the Web recently reveals several problems with the way eHarmony handled password encryption and policies, according to a security expert. The biggest problem clearly was that the passwords, although encrypted and obscured with a hashing algorithm, were not "salted," which would have increased the amount of work password crackers would need to do, writes Mike Kelly, a security analyst at Trustwave SpiderLabs. 99.5% of the passwords did not contain a special character, but 57% contained letters and numbers. Also, the word "love" was the most commonly occurring password of those that were examined, the analysis found.

by Elinor Mills
See full article at CNet News

See all posts on eHarmony

Jun 26, 2012 | Permalink

Comments

Verify your Comment

Previewing your Comment

Posted by: |

This is only a preview. Your comment has not yet been posted.

Your comment could not be posted. Error type:

Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

What We Do

Subscribe Here

Contact

Press Center & Contact

Get Help

Courtland Brooks - Your A Team

Join IDEA

Internet Dating Excellence Association

Research

Dig Deeper - Research Categories

Online Personals Watch: News on the Online Dating Industry and Business

no ads, no fluff, just raw news summaries, official rankings and ceo interviews