Feds reportedly knock on web firms' doors, ask for secret passwords

More password spying reportedly by the government
23 asterisks has to be the worst password since abc123

Communicating anonymously through the internet may not be as safe a plan for dissidents as it was a couple years ago due to an increase in government demands of web firms.

The latest case finds the U.S. government reportedly demanding that major internet companies turn over passwords to user accounts, according to two industry sources who spoke to CNET.

"I've certainly seen them ask for passwords," said one internet industry source who spoke on condition of anonymity.

"We push back," said the source in a bit of good news.

A second source echoed the first's sentiment, claiming that web firms heavily scrutinize these demands and take an "over my dead body" approach on turnover requests.

Not-so-secret questions

The U.S. government has gone further than simply requesting passwords of individual accounts, according to today's report.

Orders are said to have boldly included demanding web firms' encryption algorithm and the salt used to hide passwords behind a random set of characters

Even the answers to the secret question used to reset passwords aren't safe, noted the report.

Prism connection?

Major web firms like Microsoft, Google and Apple refused to comment on this specific investigation, but have all been named as part of the government's Prism surveillance program.

Today's report doesn't necessarily tie into Prism, which was unmentioned in the piece.

Instead, it may be the latest attempt for a government to spy on users, avoiding the back door route and simply walking through the front door by demanding the information.

Matt Swider
Latest in Computing Security
Dark Web monitoring
How users benefit from Dark Web monitoring
The X logo next to a silhouette of Elon Musk
Who was really behind the massive X cyberattack? Here’s what experts say about Elon Musk’s claims
A person holding a phone looking at a scam text with warning signs around
A massive SMS toll fee scam is sweeping the US – here’s how to stay safe, according to the FBI
View on National Assembly building in Paris, France, with French and European flags flying.
France rejects controversial encryption backdoor provision
ensure data security for your business
The complete data protection system for your business
ignal messaging application President Meredith Whittaker poses for a photograph before an interview at the Europe's largest tech conference, the Web Summit, in Lisbon on November 4, 2022.
"We will not walk back" – Signal would rather leave the UK and Sweden than remove encryption protections
Latest in News
Pro-Ject A1.2 in black, playing a vinyl record in a hi-fi listening room
Pro-Ject's new fully-automatic turntable could be the buy of Record Store Day 2025
Intergalactic: The Heretic Prophet
Intergalactic: The Heretic Prophet reportedly won't release until after 2026, as Neil Druckmann says that staff 'are playing it at the office' right now - but I don't think I can wait that long
Screenshot from action RPG soulslike Lies of P
Lies of P Overture won't elaborate on the game's eyebrow-raising post-credits twist, and I think that's good news
Nintendo Switch 2
The Switch 2 launching with a Mario Kart game 'is very unlike Nintendo' compared to the original Switch releasing with Breath of the Wild, says former marketing leads: 'That's what's gonna make you want to buy the new hardware'
Kindle de Amazon
The latest Kindle update finally fixes page turning – and adds the perfect reading tool for my sieve-like brain
Waze voice control
Waze is ditching Google Assistant for Gemini on iOS, and for good reasons