How to hack weak passwords

How to hack weak passwords

Rate This

tzink

30 Mar 2007 12:40 AM

Comments 5

I was doing my daily stock market research when I happened to come across this article on the strength of passwords and how a hacker would go about trying to steal your password. It's an interesting read.

The writer basically goes into a brute-force approach for stealing passwords like trying the common ones, then going through community discussion forums and hacking into those since they are less likely to have good security (unlike a bank or credit card company). On the theory that many people use the same password over and over, once the hacker got your username and password from the less secure web portal, he could then use it as a basis for breaking into your bank acount.

This leads me to wonder whether or not phishers are wasting their time. Is phishing more effective than the brute force approach? What if they started combining techniques? Geez, what if they started sending out messages to less secure web portals like online discussion boards? That's not a pleasant thought.

Basically, my advice is this: use different passwords, don't use anything obvious and mix-and-match uppercase, lowercase letters and digits.

Leave a Comment

Name
Comment
Please add 8 and 4 and type the answer here:
Post

Comments

Matthew Jacoby

25 Jun 2008 1:31 PM

Weak passwords are a HUGE issue that, for some odd reason, hasn't hit the IT Admin mainstream yet. I guess they don't realize that those sophisticated (and EXPENSIVE) firewalls and intrusion detection systems are rendered practically useless if there is a single weak password on their networks.

The problem now is that companies are coming up with "Password Recommendations", or policies they have no way to enforce. Instead of making "recommendations", I don't understand why companies don't REQUIRE a strong password.

There is a software solutions out there called nFront Password Filter that does just that...it REQUIRES strong passwords on Windows domains. With the option to have multiple policies, different users can be assigned different requirements. Along with its built in dictionary scan and ease of installation, IT Admins can have their networks more secure than ever in a matter of minutes.

Now there's no more excuses. nFront Password Filter takes care of all the hard work required to secure your networks.
Shawn

2 Jul 2008 2:31 PM

Many banks and credit card companies DO NOT allow you to use strong passwords! They explicity bar the use of special characters, etc. I think they do this so they can more easily hack into accounts if the government comes knocking on their door asking to see records (either civil or criminal reasons).

As it stands most users are limited to using weak/medium strength passwords on some of their most sensitive data, financial accounts, which sucks.
Ford

12 Feb 2009 2:29 AM

Hi. I am a hacker. I can get you a password (aol, myspace, facebook, msn/hotmail,yahoo..etc). I do charge money to get a password. Once i get the password i’ll show you proof i have it. Are you interested? please email me at fordf202006@yahoo.com

**I CANNOT RECOVER A LOST/STOLEN/FORGOTTEN PASSWORD**
ford

18 Apr 2010 1:25 AM

Hi. I am a hacker. I can get you a myspace, facebook,yahoo,msn/hotmail, gmail, aol...etc password. I do charge money though,but will show proof i have it. Are you interested? please email me at fordtrucks90@live.com (I was formly known as fordf202006 on yahoo but my account was deleted)

**I CANNOT RECOVER A LOST/STOELN/FORGOTTEN PASSWORD**
ford

20 Apr 2010 11:43 PM

Hi. EMAIL ME!!! I'm hacker. Can get you a myspace, facebook,yahoo,msn/hotmail, gmail, aol...etc password. I do charge money though,but will show proof i have it. Are you interested? please email me at fordtrucks90@live.com (I was formly known as fordf202006 on yahoo but my account was deleted)