http://www.thelstalk.com/how-to-hide-your-password/

A backdoor vulnerability in a Time Warner cable modem and Wi-Fi router deployed to 65,000 customers would allow a hacker to remotely access the device’s administrative menu over the web, and potentially change the settings to intercept traffic, according to a blogger who discovered the issue.
David Chen, said he was trying to help a friend change the settings on his cable modem and discovered that Time Warner had hidden administrative functions from its customers with Javascript code. By disabling Javascript in his browser, he was able to see those functions, which included a tool to dump the router’s config file.

That file, it turned out, included the administrative login and password in cleartext. Chen investigated and found the same login and password could access the admin panels for every router in the SMC8014 series on Time Warner’s network , given that the routers also expose their web interfaces to the internet.

Src: chenosaurus.com

This week a friend brought me the new ipod nano which her son locked and she couldnt figure out the password. It’s a real simple fix. Connect the ipod to your computer. makes sure hidden files and folders option is set and browse to “\iPod_Control\Device\_locked” Change the file name from _locked to _unlocked. Save. disconnect. Reset your ipod by holding down the menu and center button. At this point your ipod will be unlocked but you won’t be able to set a new password without first entering the old one(which you don’t know). To set a new password, go back into _unlocked and erase all of the characters in the file and save again. Reset once more. You can now set a new password if you choose.

A new study, which is being published in the Proceedings of the Human Factors and Ergonomics Society, details just how long we’ve been aware of the password problem. It cites a study of Unix passwords from 1979, which showed that about 30 percent of the passwords were four characters or less, and about 15 percent being words that appear in the dictionary. Fast forward to 2006, when a separate survey of 34,000 MySpace passwords revealed that the most common were “password1”, “abc123”, “myspace1”, and “password”.

src: arstechnica.com

Follow-up to yesterdays post. A researcher who examined 10,000 Hotmail, MSN and Live.com passwords that were recently exposed online has published an analysis of the list and found that “123456″ was the most commonly used password, appearing 64 times.

Forty-two percent of the passwords used lowercase letters from “a to z”; only 6 percent mixed alpha-numeric and other characters.
(more…)

Thousands of Windows Live Hotmail passwords have been leaked online, Microsoft has confirmed. The news was first reported by Neowin.
According to Microsoft, it “learned that several thousand Windows Live Hotmail customers’ credentials were exposed on a third-party site” at some point over the weekend. Neowin.com originally reported that the credentials were posted to a developer forum on Pastebin.com on October 1. A google cache of pastebin was still available for hours after it was taken down.

Did your IBM ThinkPad Supervisor password? This involves a bit more than just removing the backup battery, the supervisor (SVP) password is stored in a chip called ATMEL 24RF08. It can not be reset by disconnecting the BIOS battery or shorting any jumper. SoDoItYourself has an article detailing the retrieval of password data from an EEPROM. Although IBM claims their TP BIOS passwords are impossible to break, there is a easy and cheap way to fix this. The stuff you need cost about 5 $ at your closest radio shack type of store, you will also you need a spare PC with a serial port. Once you have done all the soldering you will also needs these 2 programs to help you dump the password
http://www.allservice.ro/forum/viewtopic.php?t=61 –programmer
http://www.allservice.ro/forum/viewtopic.php?t=56 –IBMpass Lite
alternative dl site

via: sodoityourself.com/

GetKey 3.0 easily recovers Windows and Microsoft Office Product Keys. It also can recover the keys from a slaved/offline drive or run from a WindowsPE CD,such as BartsPE or Hiren’s BootDisk! It even decodes what type of Windows is installed on the offline drive by decoding the Microsoft Product Code and Channel ID, so if you have you’re a tech working on a dead system you can grab the right Windows CD to install. GetKey is written in pure assembly language, it’s fully portable and is only 14kb in size .

Software Requirements

• Processor: Pentium class or equivalent processor
• RAM: 64MB RAM recommended
• Hard Disk: 14kb free hard disk space
• Supported Operating System: Windows 98/ME/NT/2000/2003/XP/Vista/Win7 *32bit only!

We are offering this for only Only $4.99!! All proceeds go to supporting this site!

The latest video card generation that is manufactured by ATI and Nvidia can be used to speed up password recovery attempts tremendously. Toolkits like Nvidia’s CUDA offer drivers and development examples to aid developer’s in the integration of gpu accelerated password recovery programs. One of the programs that is making use of the gpu to recover passwords is Rar GPU Password Recovery. The supported video cards at this point in time are ATI HD RV7×0s cards that include ATI Radeon 4870, 4890 and 4770 or Nvidia cards supported CUDA including GTX 260, 8600 GTS or 8600 GT. It is also recommended to have the latest Catalyst or Geforce drivers installed.

The developer provides some plain numbers to show the effectiveness of using the GPU to recover a rar password with four characters:

* ~168 passwords per second on single core of Q6600 @ 2.4Ghz
* ~325 passwords per second on 8600 GT
* ~3120 passwords per second on ATI HD4850
* ~2075 passwords per second on GTX260/192SP

The performance of the listed ATI card is almost 20 times that of a password recovery where only the cpu is used. The password recovery software is a command line utility and the developer is offering extensive information on the possible parameters that can be used to recover the password. The suggested length of the password should not exceed six characters although it is theoretically possible to start a password recovery for a password with up to 17 chars.
http://www.golubev.com/rargpu.htm

Office Scanner scans the registry for Microsoft Office product keys
and also has the option to scan an offline registry hive for keys, so if you have a clients computer that needs a re-install it’ll help you get their key from the slaved drive. You have the option to save the keys to a text file.
It’s portable and is only 9kb , written in assembly language.

It’s a donation-ware tool for commercial users so feel free to help out 😀
You can donate by clicking the about button then the paypal logo , it should send you to the paypal website.

Download Office Scanner 1.0

[downloadcounter(OfficeScanner)] downloads