Tag Archives: Security

Dashlane’s first quarterly Personal Data Security Roundup was released today! The roundup takes a look at password policies of the top 100 e-commerce sites, and the results are staggering.

Most e-commerce sites, which often store their users’ personal info, including credit cards, have password policies that seem to be from a more naive era… perhaps one not riddled with account crackings and data breaches. Here’s an infographic of what the results of our study show:

Click on the infographic for full size version.

INFOGRAPHIC - THE ILLUSION OF PERSONAL DATA SECURITY IN ECOMMERCE

Key findings:

  • 55% still accept notoriously weak passwords such as “123456” or “password”
  • 51% make no attempt to block entry after 10 incorrect password entries (including Amazon, Dell, Best Buy, Macy’s and Williams-Sonoma)
  • 64% have highly questionable password practices (receiving a negative total score in the roundup)
  • 61% do not provide any advice on how to create a strong password during signup, and  93% do not provide an on-screen password strength assessment
  • Only 10% scored above the threshold for good password policies (i.e. 45 points or more in the roundup)
  • 8 sites, including Toys “R” Us, J.Crew and 1-800-Flowers.com, send passwords in plain text via email

Your password is barricade between you (and anyone else) and your account. They should be long (more than 8 characters) and complex (include a letter, number, a mix of upper and lower case letters, and/or symbols).

The easiest way to create and remember strong passwords is with a password manager, like Dashlane, which generates unique passwords for you, saves them to your account, and autofills them online. Your data is protected with world-class security and encryption, and is only accessible to you. Learn more and get it free at here.

The full study and methodology behind this roundup can be found here. The press release is also available here. For questions, contact ryan(at)dashlane.com.

View all posts by Ashley Thurston Posted in Ecommerce, Infographics, Press, Security, Shopping | 3 Comments

We’re excited to inform you that Dashlane 2.0 is here, and it’s on its way to your device! 

dashlane 2.0 on Mac

It’s the biggest update in Dashlane history. We have a new updates across the board – Mac, PC, iOS and Android – in addition to a spanking new website, and new features. Read on for details.

 Dashlane on desktop (Mac and PC) got a brand new interface.

In addition to our slick new interface, we also redesigned our security dashboard to make it even easier to see what passwords are putting you at risk. Plus, our new security score lets you instantly see your password health in a nutshell. Follow our easy tips to quickly improve your security score, and thus, your online security.

security-dashboard

We’ve also made significant improvements to our autofill, which now handles 2-step and 3-field logins, such as banks. Plus, we’ve enhanced the way Dashlane captures your purchases, giving you improved itemized receipts and screenshots of your purchases.

Dashlane for Android is packed with new features.

Our latest Android version comes packed with a brand new in-app browser that gives you all the form-filling power that you enjoy on desktop. You can now automatically log in to your accounts, autofill forms, autosave new passwords, and use our strong password generator to create new passwords on the fly.

dashlane on android
Dashlane for Android 2.0 also includes
tablet compatibility for Android (versions 2.3 and higher), so you can now have Dashlane synced to all your Android devices. The new update also includes portrait/landscape orientation to enhance your Dashlane experience.

dashlane android tablet


 2-Factor Authentication using Google Authenticator – available everywhere.

enabling google autheticator Also in this update, we’ve added compatibility with Google Authenticator on Mac, PC, iOS, and Android. Now you can add another layer of 2-factor authentication to your login, either for each time you log in to Dashlane or only when you want to authenticate a new device.

To enable additional 2-factor authentication, simply go to your security settings in the desktop app, switch it on, and follow the instructions. If you need additional help, visit our FAQ.

Our New Premium Offering
We’re introducing our new premium offering in Dashlane 2.0. It’s a whole lot clearer, and gives you our full functionality on any given device for free, so you can experience the awesome security and convenience that Dashlane provides. For $19.99 per year, Dashlane Premium subscribers can enjoy:
  • Secure backup of their data to our cloud servers
  • Automatic syncing between an unlimited number of devices
  • Web access to your logins and passwords
  • Priority user support
We have a spanking new website, too!
If you haven’t checked it out already, we have a brand new website that’s a much slicker, easier to understand, and reflects all the new changes in Dashlane. 

dashlane website 2.0

Additional changes in the app
  • At the launch of Dashlane 2.0, points officially retired. You’ve been compensated with lifetime access to all the features that you could have unlocked with your points, not to mention the new free features in this update. 
  • Badges have moved to the web-app, so you can view all of them by logging in to your account and going to “My Badges”. 
  • We’re also carrying on with our awesome referral benefits! For each friend that you refer to Dashlane, you get 6 months of Dashlane Premium for free – and so will your friend! So, same as before, you can unlock Premium for free by referring friends using your unique referral code.

It’s been a lot of hard work to pull all of this together, and we hope you enjoy the new update. More details on our 2.0 update are available in the release notes on our website

Share your thoughts on the update in the comments – we’d love to hear your feedback! Enjoy the update, and thanks for supporting Dashlane!  

View all posts by Ashley Thurston Posted in Convenience, Features, Mobile, Security, Updates, We Love Our Users | 18 Comments

In our Link Roundup we will be sharing the articles of the week that got our attention, sparked our interest, or got us thinking. Most of these articles will be about e-Commerce, Startup Life, Security, and Efficiency.

Data Security & Privacy Global Insights | Visually

RSA: Five Top Internet Security Threats in 2012 | Notebook Review

11 Tips for E-Commerce Demo Videos That Drive Conversion | ReelSeo

How Frictionless Sharing–i.e. using Facebook– Could Undermine Your Legal Right to Privacy | The Atlantic

Adult site DigitalPlayground Hacked: Credit Card Info on 40K Exposed | Threat Post

DataViz Tool Shows You Gaping Holes In Your Password Security | FastCo Design

 

 

View all posts by Stephanie Frasco Posted in Startup life | Comments Off

With every new large-scale security breach, an onset of articles follows reminding us all again-and-again about the importance of strong online passwords and what we must do to protect ourselves from hackers.  Two of the latest website security breaches to make headlines are perfect examples.

Stratfor, a Global Intelligence firm that releases a daily security newsletter, was recently hit by hackers.  Those responsible for this attack published around 860,000 usernames, email addresses, and passwords for everyone registered on Stratfor’s site.  In addition, the hackers also claim they disclosed credit card information and other sensitive data about every Stratfor customer on file.

The Tech Herald published an analysis of the Password List and it shows that there are lessons to be learned. The lessons are no surprise…

  1. Weak Passwords
  2. Recycled Passwords

In addition, online shoe selling giant, Zappos.com was also a victim of a cyber attack recently with over 24 million customers’ personal information stolen just this week.  As the news unfolds, we still don’t know all of the details except that Zappos officials are forcing all customers to reset their passwords.

As the “online world” becomes more integrated into our lives, these types of cyber attacks are becoming more and more commonplace.  And it’s almost always the same outcome:  Security Experts and journalists advise us to change our passwords to make them more secure.  But, unfortunately most of us don’t listen.

So why is it that we don’t listen? Like many of the things we do, the reason goes deep into basic human psychology. Bruce Schneier, Security Expert, wrote an in-depth essay on this very topic.  He says, “the psychology of security is intimately tied to how we think: both intellectually and emotionally.”

 

Here are some theories I came up with myself based on my own experiences.

1.  We think it will never happen to me.
We often go through life thinking we’re invisible.  The same applies to the Internet.  You might be saying, “Hacked? I won’t get hacked. That only happens to my Facebook friends who click on links.  I don’t engage is risky behavior like that, so it will never happen to me.”  WRONG.  It likely will happen to you!  In fact, considering the scale of attacks on sites like Zappos, chances are pretty good it already has happened to you.  And chances are also good that you’re unaware it’s happened — this is exactly what hackers want.  Unfortunately, prevention is a difficult pill to swallow.

2.  Unless it happens to us, we remain unaffected.
We can all relate to this.   Two guests I invited brought along their 18-month old boy, who is a bit of an explorer.  As I was taking the steaming hot lasagna out of the oven, I turned away for one second to place the dish on the counter.  Before I knew it, I heard him wailing in pain.  While I turned away he stuck his hands into the oven and burned himself.  While I continued to feel terrible for the little guy and assumed it is all my fault and launched into ideas about how I will be a horrible parent, his parents assured me that this is actually a good thing because he learned his lesson.  He will never put his hands in an oven again.  So was the lesson learned?  Chances are very good.

This might hold true for your own attitude towards your online security and passwords. Unless you have already been affected, you will likely continue to use the same old passwords on every website.

3.  We are lazy
Let’s face it.  It’s boring to go in and change all your websites one-by-one.  We have other things to do — like watch videos, chat with friends, shop, and surf the web.  For many of us, the Internet is an escape, an activity for “fun time.”  The last thing we want to do is go through 100′s of websites to update our passwords.

4.  We are creatures of habit.
We’ve been using the web for years without worry of security measures.  We’ve created habits on how we use the Internet.  Ian Newby-Clark is a psychologist says we have hundreds of habits.  And even if we want to change them and we aim to change them we fail.  “These habits are hard to change because they are so ingrained…they are almost automatic.”

5.  We want convenience
This is a topic we talk a lot about on the Dashlane blog.  Alexis, our Co-Founder and Product Manager wrote a post on this topic explaining why security for its own purpose is not the solution.

One Step Closer to a Secure Online Life
There are a lot of ways to protect yourself online.  Using different passwords on each site is a good start. We aren’t going to tell you this is the only way to make yourself safer online, but it definitely lowers your risks. We have created a solution for this with Dashlane.  Whether you chose to use it or not is your choice.  But hopefully we have made it convenient and simple enough for you to take a step closer to a more secure online life.

Watch here to learn how this feature works.

View all posts by Stephanie Frasco Posted in Security | 5 Comments

In our Link Roundup we will be sharing the articles of the week that got our attention, sparked our interest, or got us thinking. Most of these articles will be about e-Commerce, Startup Life, Security, and Efficiency.

Autobahnternet – Login and Register for sites Lightning Quick with Dashlane | Netted

Dashlane : Efficient Logins and Checkouts | Backspace Tab

Sales from Mobile Devices Double in December | Internet Retailer

How are you converting your visitors? Here are 50 articles to learn more. | Unbounce

Get Organized: Clean Up Your Passwords | PC Mag

Passwords aren’t dead, though maybe yours should be | PC Advisor

View all posts by Stephanie Frasco Posted in Startup life | 4 Comments