Skip to main content

See where all of your passwords are being used with Shard

It’s not a smart idea to use the same password everywhere you need to log in — if your credentials are stolen for one service or site, hackers can use that information to gain access to all your other accounts. Now, a security researcher has developed a tool that helps users tighten up their defenses.

Shard is a command line tool that allows users to check if a particular password is also being used for their Facebook, Twitter, Instagram, LinkedIn, and Reddit accounts. The intention is that the user would then rectify the situation, although for obvious reasons the utility itself doesn’t have the power to make changes to the accounts.

Recommended Videos

Philip O’Keefe developed Shard after finding that the randomly generated password he was using for several different accounts was among the credentials leaked following the major LinkedIn breach that took place earlier this year. O’Keefe is now using a password manager to maintain the security of his accounts.

Given the current frequency of security breaches affecting major sites and services, a tool like Shard couldn’t come at a better time. In June, Twitter was forced to lock millions of accounts after it emerged that passwords for as many as 32 million accounts were being sold on the dark web.

However, there are some concerns about how Shard could benefit those working to target users who do use the same password everywhere they go. The tool could allow hackers to check where illegally purchased passwords are in use, and slight modifications could expand the list of being examined to include banking services and more, according to a report from Ars Technica.

In the event that Shard is adopted by online criminals, there’s all the more reason to use unique passwords for every site and service you register an account for. You can grab the Shard tool right now from its GitHub page.

Brad Jones
Former Digital Trends Contributor
Brad is an English-born writer currently splitting his time between Edinburgh and Pennsylvania. You can find him on Twitter…
Is the Bitwarden password manager safe to use?
Bitwarden website on a laptop.

Has someone recommended Bitwarden to you or have you seen it in your searches for the best password manager? If so, you’re likely wondering how safe it is to use, especially considering it’s widely available for free.

We’ll walk you through the safety, compliance, and security features that Bitwarden uses along with a concern you should consider. It’s then up to you to decide if Bitwarden is a safe and secure option for you.
What is Bitwarden?

Read more
How to change your router’s Wi-Fi password
Netgear's Nighthawk RAXE500 tri-band router.

When it comes to getting devices online, Wi-Fi is the gold standard. Millions of people use their laptops, TVs, gaming consoles, and smartphones with the wireless technology – and routers are the magical devices that make this possible. Setting a password on your Wi-Fi router is crucial to keeping it safe and secure, as an unprotected router can easily be targeted by hackers or bogged down by neighbors who take advantage of the free access.

Because of this, it's important to change the default password for your router. A good Wi-Fi password consists of a long alphanumeric string that can't be easily guessed. Changing your router's Wi-Fi password is a pretty easy process, though it might be a bit confusing if you're new to the concept.

Read more
Hackers targeted 1Password after Okta breach, but your logins are safe
A dark mystery hand typing on a laptop computer at night.

Security credentials like usernames and passwords are a tempting target for hackers, and even the best password managers can come under threat from time to time. That was the case recently with the popular password manager 1Password, which recently disclosed (via Bleeping Computer) that its Okta support system was breached by malicious hackers.

Fortunately, it doesn’t appear that any customer data was stolen, so if you use 1Password, your login info should be safe for now. However, it’s always good to regularly update your passwords (or use passkeys) just in case they fall into the wrong hands.

Read more