How good are MySpace passwords – better than expected
Mr. Bruce Schneier reports at his latest Crypto-Gram Newsletter:
It’s a hard question to answer because data is scarce. But recently, a colleague sent me some spoils from a MySpace phishing attack: 34,000 actual user names and passwords.
Even 25 % of users had a password of eight characters and 17 % logged in with a password of nine characters.
There was some 32-character passwords as well.(!)
The entry continues that 28 % were just lowercase letters plus a single final digit — and two-thirds of those have the single digit 1. The report lists passwords like password1, myspace1, qwerty1, 123456, princess1 etc, however. But there is that ’1′ added!
Have a safety weekend!