Newsletters
Customer Relationship Management News NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
Home CRM Systems Customer Service Business Intelligence Sales & Marketing More Topics...
Eliminate costly downtime!
Find out how with Free White Paper
& enter to win a Samsung Galaxy Note

www.apc.com
Wireless Security
24/7/365 Network Uptime
Average Rating:
Rate this article:  
Target.com Gets High Marks for Password Security
Target.com Gets High Marks for Password Security

By Jennifer Bjorhus
January 29, 2014 9:40AM

Bookmark and Share
According to a first-ever study, retailer Target tied for No. 4 in the nation for its online customer password policies. Best Buy Co. Inc. tied for No. 11 with a score of 40 (anything above 45 is considered good). Only 10 percent of the 100 retailers in the study scored 45 or above, and more than half still accept lazy passwords like "123456."
 


Target Corp. may be engulfed in data security issues, but the strength of customer passwords at Target.com isn't likely one of them.

The Minneapolis-based retailer tied for No. 4 in the nation for its online customer password policies, according to a first-ever study by the company Dashlane Inc., scoring 60 of 100 possible points. Only Apple Inc., at No. 1., scored a perfect 100.

Best Buy Co. Inc. tied for No. 11 with a score of 40. E-tailing colossus Amazon fared poorly with a score of -40, tying for No. 63.

"Anything above 45 is pretty good," said Dashlane CEO Emmanuel Schalit in an interview. "What's concerning in this study is to find so many sites, including pretty large players, that are not paying attention to this problem."

Hackers are armed with increasingly sophisticated tools to break passwords as shopping migrates online. Target and Richfield-based Best Buy are shifting more and more resources online as they work to hold their ground against e-tailers such as Amazon.com.

Only 10 percent of the 100 retailers in Dashlane's study scored 45 or above, and more than half still accept lazy passwords such as "123456," "111111" or even "password," it found. Half of the companies don't block logins even after 10 incorrect password tries, including Amazon, Dell, Best Buy, Macy's and Williams-Sonoma.

In one major D'oh!, Dashlane noted that MLB, the official site for Major League Baseball, allows shoppers to use the word "baseball." Amazon, Wal-Mart, Office Depot and Macy's were among those retailers with scores at or below 30.

Shoppers themselves don't appear to be clamoring for stricter password policies.

A separate poll out Monday in the wake of Target's data breach shows that American shoppers say they are very or extremely concerned about the safety of their personal information in stores and online, but aren't changing their behavior much to protect it. A majority said that since the breach they have not changed their online passwords at store Web sites, asked for new credit or debit card numbers from their bank or signed up for a credit monitoring service. The AP-GfK Poll surveyed 1,060 adults.

Dashlane, a venture-capital-backed password manager in Manhattan that markets to consumers, examined the password policies of the Top 100 e-commerce sites from Jan. 17-Jan. 22. It scored companies from minus 100 to 100 based on two dozen criteria such as how many characters they require, whether they require a mix of numbers and letters, whether they e-mail customer passwords in plain text, and whether they tell consumers setting up an account whether their chosen password is weak or strong. (continued...)

1  |  2  |  Next Page >

 


© 2014 Star Tribune (Minneapolis, MN) under contract with NewsEdge. All rights reserved.
 

Tell Us What You Think
Comment:

Name:



APC has an established a reputation for solid products that virtually pay for themselves upon installation. Who has time to spend worrying about system downtime? APC makes it easy for you to focus on business growth instead of business downtime with reliable data center systems and IT solutions. Learn more here.


 Wireless Security
1.   NSC Backs Disclosing Vulnerabilities
2.   McAfee Tool To Stop the Heartbleed
3.   How, Why Heartbleed Got Its Name
4.   Is Heartbleed the Biggest Threat Ever?
5.   States Probing Massive Data Breach


advertisement
McAfee Tool To Stop the Heartbleed
Firm offering it free to users.
Average Rating:
Is Heartbleed the Biggest Threat Ever?
Widespread extent puts millions at risk.
Average Rating:
States Probing Massive Data Breach
Credit giant Experian in the hot seat.
Average Rating:
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Heartbleed Could Cost Millions, Could Have Been Prevented
Early estimates of Heartbleed’s cost to enterprises are running in the millions. The reason: revoking all the SSL certificates the bug leaked will come at a very hefty price.
 
Google's Street View Software Unravels CAPTCHAs
The latest software Google uses for its Street View cars to read street numbers in images for Google Maps works so well that it also solves CAPTCHAs, those puzzles designed to defeat bots.
 
Canadian Teen Arrested for Heartbleed Hack
One week after the OpenSSL Heartbleed vulnerability was unveiled, Canadian authorities have made the first arrest -- a London, Ontario teenager -- connected to exploiting the security hole.
 

Enterprise Hardware Spotlight
Vaio Fit 11A Battery Danger Forces Recall by Sony
Using a Sony Vaio Fit 11A laptop? It's time to send it back to Sony. In fact, Sony is encouraging people to stop using the laptop after several reports of its Panasonic battery overheating.
 
Continued Drop in Global PC Shipments Slows
Worldwide shipments of PCs fell during the first three months of the year, but the global slump in PC demand may be easing, with a considerable slowdown from last year's drops.
 
Google Glass Finds a Home in Medical Education, Practice
Google Glass may find its first markets in verticals in which hands-free access to data is a boon. Medicine is among the most prominent of those, as seen in a number of Glass experiments under way.
 

Mobile Technology Spotlight
Google Releases Chrome Remote Desktop App for Android
You're out on a sales call, and use your Android mobile device to grab a file you have back at the office on your desktop. That's a bit easier now with Google's Chrome Remote Desktop app for Android.
 
Amazon 3D Smartphone Pics Leaked
E-commerce giant Amazon is reportedly set to launch a smartphone after years of development. Photos of the phone, which may feature a unique 3D interface, were leaked by tech pub BGR.
 
Zebra Tech Buys Motorola Enterprise for $3.45B
Weeks after Lenovo bought Motorola Mobility’s assets from Google for $2.91 billion, Zebra Technologies is throwing down $3.45 billion for Motorola’s Enterprise business in an all-cash deal.
 

Navigation
CRM Daily
Home/Top News | CRM Systems | Customer Service | Business Intelligence | Sales & Marketing | Contact Centers | Customer Data | CRM Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.