If your users use Gmail, you might want to give them a refresher on password safety. Like many sites, Google's Gmail service provides several ways to reset forgotten passwords. Users can do this in one of three ways:
- Email: Sends a note that includes a password-rest link to a secondary email address.
- SMS: Sends a text message that includes a password-reset link to a mobile phone number.
- Security Question: Allows you to reset your password online after answering a personal security question.
While convenient, these password-reset tools can be a security hole—as a Twitter employee recently discovered when her Gmail account was hacked and sensitive company documents were post around the Web. In this video, CNET Executive Editor Tom Merritt explains how the alleged attack took place. If you aren't able to watch the video, you can read a text version of Tom's examination of the Gmail password reset options on the CNET TV blog.
Bill Detwiler has nothing to disclose. He doesn't hold investments in the technology companies he covers.
Bill Detwiler is Managing Editor of TechRepublic and Tech Pro Research and the host of Cracking Open, CNET and TechRepublic's popular online show. Prior to joining TechRepublic in 2000, Bill was an IT manager, database administrator, and desktop support specialist in the social research and energy industries. He has bachelor's and master's degrees from the University of Louisville, where he has also lectured on computer crime and crime prevention.