EvilZone

Hacking and Security => Mobile Hacking => Topic started by: Axon on December 12, 2014, 02:22:11 PM

Title: Why passwords should not be stored on a mobile device
Post by: Axon on December 12, 2014, 02:22:11 PM: This link discusses the problem with password storage in modern mobile phones (e.g iOS, Android). Interesting to read.
http://mobilesecurityares.blogspot.de/2014/12/why-passwords-should-not-be-stored-on.html
Title: Re: Why passwords should not be stored on a mobile device
Post by: Kulverstukas on December 12, 2014, 06:46:57 PM: lel. KeepPassDroid all the way, fuck everything else and fuck those idiots that store their whole life on the phone.
Title: Re: Why passwords should not be stored on a mobile device
Post by: proxx on December 12, 2014, 07:06:36 PM: Quote from: Kulverstukas on December 12, 2014, 06:46:57 PM
lel. KeepPassDroid all the way, fuck everything else and fuck those idiots that store their whole life on the phone.
Best thing is they don't care :)

Nice read.
Title: Re: Why passwords should not be stored on a mobile device
Post by: zenith on December 12, 2014, 07:39:29 PM: Quote from: proxx on December 12, 2014, 07:06:36 PM
Best thing is they don't care :)

Nice read.

I feel like it's less about people not caring, and more about having the mentality of "Oh, it doens't matter because who would want to steal my info/get my passwords anyway." At least, that's pretty much the consensus I get when I ever have a remotely security-related conversation with someone who isn't a part of our lovely community.

But yeah, good read. Thanks Axon. Makes me cringe to think that years ago I stored passwords in plaintext.
Title: Re: Why passwords should not be stored on a mobile device
Post by: Kage on December 12, 2014, 11:55:12 PM: Quote from: zenith on December 12, 2014, 07:39:29 PM
I feel like it's less about people not caring, and more about having the mentality of "Oh, it doens't matter because who would want to steal my info/get my passwords anyway." At least, that's pretty much the consensus I get when I ever have a remotely security-related conversation with someone who isn't a part of our lovely community.

But yeah, good read. Thanks Axon. Makes me cringe to think that years ago I stored passwords in plaintext.
Exactly what I encounter when I urge my relatives to up their security :/
That and "I don't care if the government spies on me, I have nothing to hide" -.-
Title: Re: Why passwords should not be stored on a mobile device
Post by: Stackprotector on December 13, 2014, 12:57:08 PM: We should use the embedded secure element more often
Title: Re: Why passwords should not be stored on a mobile device
Post by: LsD on January 03, 2015, 08:39:51 PM: Hell, the 'mobile revolution' is the whole reason I'm getting back into hacking/security. Great read by the way.
Title: Re: Why passwords should not be stored on a mobile device
Post by: Spectrum_963 on January 05, 2015, 05:33:50 PM: Quote from: zenith on December 12, 2014, 07:39:29 PM
I feel like it's less about people not caring, and more about having the mentality of "Oh, it doens't matter because who would want to steal my info/get my passwords anyway."

Until they realize that someone actually has read their shit.
Keep it all up in your brain. Use phrases + numbers that stick in your mind so you won't forget.
Nice read btw. 1+