×
Login Register an account
Top Submissions Explore Upgoat Search Random Subverse Random Post Colorize! Site Rules Donate
2

AI Can Crack Most Common Passwords

submitted by Conspirologist to technology 2.1 yearsApr 8, 2023 12:02:15 ago (+2/-0)     (www.tomshardware.com)

https://www.tomshardware.com/news/ai-cracks-most-common-passwords-in-less-than-a-minute



10 comments block

sort by: hot new top old low

[ - ] GloryBeckons 0 points 2.1 yearsApr 8, 2023 12:15:54 ago (+0/-0)

A "common" password is not a password. It's the digital equivalent of leaving a key under the doormat.

Use a password manager and generate unique passwords for everything.

[ - ] La_Chalupacabra 0 points 2.1 yearsApr 8, 2023 16:43:08 ago (+0/-0)

I recommend KeePass Portable because it can be launched from an USB drive.

[ - ] AugustineOfHippo2 0 points 2.1 yearsApr 8, 2023 12:53:40 ago (+0/-0)

So WellsFargo1234 is not a good password for my bank account?

What should I change it to?

[ - ] albatrosv15 0 points 2.1 yearsApr 8, 2023 14:28:27 ago (+0/-0)

I don't trust anything where there is this number as percentage, "51".
Also, what hash?
Edit: Holy shit, rockyou! Whoohoo, massive nostalgia! /s

[ - ] AngryWhiteKeyboardWarrior 0 points 2.1 yearsApr 8, 2023 15:22:54 ago (+0/-0)

It was pretty nuts how many accounts you used to be able to get into, just by trying the most common passwords. So many people got "hacked" simply because their password was qwerty or some shit.

Not quite as easy these days, depending on the website.

[ - ] deleted 1 point 2.1 yearsApr 8, 2023 12:16:34 ago (+1/-0)

deleted

[ - ] deleted -2 points 2.1 yearsApr 8, 2023 12:19:10 ago (+0/-2)

deleted

[ - ] deleted 1 point 2.1 yearsApr 8, 2023 12:22:57 ago (+1/-0)

deleted

[ - ] ghetto_shitlord 1 point 2.1 yearsApr 8, 2023 14:29:21 ago (+1/-0)

This person does not understand what they are talking about. In any of our environments, we use 64 character passwords secured in an offline vault with MFA. Yes, offline. New password files go out weekly distributed in person, even though we are a remote company.

[ - ] deleted 0 points 2.1 yearsApr 9, 2023 15:15:52 ago (+0/-0)

deleted

[ - ] observation1 1 point 2.1 yearsApr 8, 2023 12:49:54 ago (+1/-0)*

You dont need ai to brute force which has existed for as long as computers have.

Almost any web site worth securing will lock out for too many password attempts. The better ones ip ban for repeated fails attempt even trying different names.

The scenario they describe is if they have your encrypted hard drive. They aren't talking about remote access which has other problems.

[ - ] StopTheEvilAgenda 1 point 2.1 yearsApr 8, 2023 16:42:54 ago (+1/-0)

Best to locate a hashed password file if possible, and try to crack it offline. Not that I would know.