CloudBleed – Eggs in the Basket and the Basket Tipped Over Hopefully you have been following the CloudBleed bug discovered (and now fixed) by ProjectZero team. Here are the details incase you haven’t yet seen it. What is CloudBleed CloudBleed is a major information leakage bug in CloudFlare’s CDN. The bug is responsible for leaking[…]

DNS Based Malware Protection

It is important to protect your systems via multiple security best practices. Most users are well familiar with some the common solutions like password assistants, anti-malware and web proxy. One less frequently used but strong defense is a DNS based protection. Why DNS Based Protection is Effective DNS is one of the foundational elements of[…]

Non WebSite Passwords

  Passwords Everywhere The security in digital world hinges on passwords. They are used everywhere. ReAn browser plug-in and app can accommodate most web based situations but there are other scenarios where this will not work. As an example, Wireless Network or Router need strong passwords. Also, SSH Keys are protected using a password. Another[…]

Website Password Policy

What is a Good (Enough) Password Policy Password policy for an organization/website is a risk management question. There is no password policy standard that is consistently followed. Every organization makes a choice and creates one that fits their needs. They are similar but different. Some password policies are complete head scratchers. They have upper limits[…]

Getting Started

Download ReAn ReAn for Chrome can be downloaded from unlisted link Installation and First Use If you have not already installed ReAn please download and install ReAn by following the instructions on the video Theme to Select The main purpose of ReAn is to make is extremely easy to generate complex passwords. To[…]

Multi-Factor Based Passwords

What is Multi Factor Authentication The biggest weakness of password based authentication systems is the ability to guess or brute-force passwords. Passwords are relatively easy to guess for many users and commonly reused. The combination allows the hackers to obtain passwords from compromised sites and use them against other sites, thereby taking over the users’[…]

ReAn Protects

Phishing Protection

What is Phishing Phishing is electronic trickery with malicious intent. In most cases it is an attack that is designed to steal sensitive information from the victim and/or infect their system with malware. What is Spear Phishing Spear Phishing is a targeted phishing attack. Unlike phishing attacks that casts a wide net and rely on[…]

Tailored Passwords

  WebSite Password Policies Password policies for websites across the Internet is a real head scratcher. There is no standard policy or even policies. The minimum and maximum password length requirements vary heavily across the sites. Very often sites limit the list of special characters that can be used by the users. This often causes[…]

ReAn Cryptography

ReAn Cryptography Details ReAn leverages the best available cryptographic measure to secure your accounts. There are multiple security keys and ciphers in play. Most of the technical complexity is hidden from the end user. There are 3 different cryptography keys that come together to generate your password. Even the smallest change in any of these keys completely[…]