Troy Hunt has an unsurprising-yet-nonetheless-terrifying analysis of the passwords found in the recent Sony security breaches. The nice thing about so many different Sony properties getting hacked is that we have data from multiple web properties to cross-reference :)

The most striking (yet still unsurprising) things to me: 99% of passwords contained NO non-alphanumeric characters and 92% of passwords are re-used on multiple sites.

Oh, and passwords like dallascowboys and 1qazZAQ! that people think are strong are still in the password dictionaries.

The whole post is worth a read later.

My conclusion: if you actually know any of your passwords, you’re doing it wrong.

← Previous post
Next post →