PC World

MySQL Vulnerability Allows Attackers to Bypass Password Verification

Security researchers have released details about a vulnerability in the MySQL server that could allow potential attackers to access MySQL databases without inputting proper authentication credentials.
Ars Technica

Security flaw in MySQL, MariaDB allows access with any password—just keep submitting it

When the latest release of MariaDB was announced in April by MontyProgram AB founder and MySQL creator Michael “Monty” Widenius, it came with a warning from Widenius that a severe security bug had ...
Dark Reading

Safely Storing User Passwords: Hashing vs. Encrypting

Over the past several months, we've seen major breaches exposing numerous usernames and passwords. The eBay and Adobe breaches impacted millions of accounts. Snapchat was compromised. With every ...
Wired

Hacker Lexicon: What Is Password Hashing?

TL;DR Hash is both a noun and a verb. Hashing is the act of converting passwords into unreadable strings of characters that are designed to be impossible to convert back, known as hashes. Some hashing ...
CSOonline

Hashing explained: Why it’s your best bet to protect stored passwords

Hashing is a one-way cryptographic function while encryption is designed to work both ways. Encryption algorithms take input and a secret key and generate a random looking output called a ciphertext.
InfoWorld

MySQL vulnerability allows attackers to bypass password verification

The vulnerability was addressed in MySQL 5.1.63 and 5.5.25, but many server administrators might not be aware of its impact Security researchers have released details about a vulnerability in the ...