Statistics from 10,000 leaked Hotmail passwords
An anonymous user posted usernames and passwords of over 10,000 Windows Live Hotmail accounts to a web site called PasteBin. PasteBin is currently down for maintenance but I managed to get a copy of the list, and quickly generated some statistics from these passwords.
My impression is that these passwords have been gathered using phishing kits. Even more, the phishing kit used most probably was badly designed, since it was one that didn’t further authenticated the users to the Hotmail/Live website. I think it just returned an error message after grabbing the credentials. I noticed this because some of the passwords are repeated once or twice (sometimes with different capitalization). What most probably happened, is that the users didn’t understand what was happening, and they tried to enter the same password again and again, thinking the password was wrong.
Bellow are the statistics:
- The list initially contained 10,028 entries.
- After I’ve cleaned up the list, like removing entries without a password, I had 9843 valid entries (passwords).
- There are 8931 (90%) unique passwords in the list.
- The longest password was 30 chars long: lafaroleratropezoooooooooooooo.
- The shortest password was 1 char long : )
Top 20 most common passwords:
- 123456 - 64
- 123456789 - 18
- alejandra - 11
- 111111 - 10
- alberto - 9
- tequiero - 9
- alejandro - 9
- 12345678 - 9
- 1234567 - 8
- estrella - 7
- iloveyou - 7
- daniel - 7
- 000000 - 7
- roberto - 7
- 654321 - 6
- bonita - 6
- sebastian - 6
- beatriz - 6
- mariposa - 5
- america - 5
Based on these passwords I think the phishing kit was targeted towards the Latino community.
Password length distribution:
- 1 chars – 2 – 0 %
- 2 chars – 4 – 0 %
- 3 chars – 4 – 0 %
- 4 chars – 31 – 0 %
- 5 chars – 49 – 1 %
- 6 chars – 1946 – 22 %
- 7 chars – 1254 – 14 %
- 8 chars – 1838 – 21 %
- 9 chars – 1091 – 12 %
- 10 chars – 772 – 9 %
- 11 chars – 527 – 6 %
- 12 chars – 431 – 5 %
- 13 chars – 290 – 3 %
- 14 chars – 219 – 2 %
- 15 chars – 157 – 2 %
- 16 chars – 190 – 2 %
- 17 chars – 56 – 1 %
- 18 chars – 17 – 0 %
- 19 chars – 7 – 0 %
- 20 chars – 14 – 0 %
- 21 chars – 10 – 0 %
- 22 chars – 8 – 0 %
- 23 chars – 3 – 0 %
- 24 chars – 3 – 0 %
- 25 chars – 3 – 0 %
- 26 chars – 0 – 0 %
- 27 chars – 3 – 0 %
- 28 chars – 0 – 0 %
- 29 chars – 1 – 0 %
- 30 chars – 1 – 0 %
As you can see from the list above, most of the passwords are between 6 and 9 characters long. Average password length is 8 characters.
What kind of passwords were in the list? :
- 3,713 = 42 %; lower alpha passwords : passwords containing only characters from ‘a’ to ‘z’.
Example : iloveyou - 291 = 3 %; mixed case alpha passwords : passwords containing characters from ‘a’ to ‘z’ and from ‘A’ to ‘Z’.
Example: ILoveYou - 1707 = 19 %; numeric passwords: passwords containing only numbers (’0′ to ’9′)
Example: 123456 - 2655 = 30 %; mixed alpha and numeric passwords: passwords containing characters from ‘a’-'z’, ‘A’-'Z’ and ’0′-’9′.
Example: Iloveyou12 - 565 = 6 %; mixed alpha + numeric + other characters.
Example: 1Love You$%@
As we can see and conclude from the list above, a big majority of users still use very poor passwords: 42 % (lower alpha only) and 19 % (numeric only), while only 6 % from all the passwords had passwords which use a selection of alpha numeric and other characters.
damn…thats why I stick with G G G Mail…
[...] Acunetix Web Application Security Blog » Statistics from 10000 … [...]
[...] to the clipboard site PasteBin. The site owner has since removed the list, but Bogdan Calin of Acunetix grabbed the passwords before it [...]
[...] to a statistical analysis of the 10,000 passwords published by Bogdan Calin at Acunetix, 42% of the phished users use lower alpha passwords only (a [...]
[...] This post was Twitted by pemuller [...]
[...] “Passwort” unter Hotmail-Usern lautet “123456″ – zumindest laut einer Blitzanalyse der 10.000 Accounts bei Microsofts eigenem Mail-Service, deren Zugangsdaten gestern ins Netz [...]
Amazingly, American Express still limits its online account users to maximum 8 (yes–EIGHT!) purely alphanumeric passwords; even dashes and underrscores are verboten. I complained to their online tech support reps a few times directly, but to no avail. They should be scolded publicly for these unbelievably stupid and dangerous limitations.
–Tony G
[...] This post was Twitted by Dr4g [...]
[...] This post was Twitted by gilrepaux [...]
wells fargo does the same thing but they found a way to take it one step further. Both user names and passwords are NOT case sensitive.
“As we can see and conclude from the list above, a big majority of internet users still use very poor passwords: 42 % (lower alpha only) and 19 % (numeric only), while only 6 % from all the passwords had passwords which use a selection of alpha numeric and other characters.”
It’s not really valid to say that “a big majority of internet users” when the “study” is of users whose accounts have fallen to some hacking attempt. Users who are knowledgeable about password security would be less likely to give information to a phishing attack.
[...] Statistics from 10,000 leaked Hotmail passwords Share this on del.icio.usStumble upon something good? Share it on StumbleUponPost this to MySpaceShare this on FacebookTweet This!Add this to Google Bookmarks [...]
@Benjamin Manns : You are right, thanks for noticing. It’s my mistake. I wanted to say “a big majority of users” (referring to these Hotmail users) not “a big majority of internet users”. I’ve corrected the post. Thanks again.
firstly i shocked to see the list of password.. but when i checked now i feel relax… my password so complicated but its not in the list..
[...] [...]
[...] to the clipboard site PasteBin. The site owner has since removed the list, but Bogdan Calin of Acunetix grabbed the passwords before it [...]
[...] This post was Twitted by jm1601com [...]
Hi all!
I’m your colleague from Russia. I’ve analyzed the same data but my results slightly differs from yours. Here they are: http://devteev.blogspot.com/2009/10/windows-live-hotmail.html
Hi Dmitry. Unfortunately, I don’t understand russian. I’ve tried Google translate but the results are not very good and it cannot translate images
[...] teknologiajohtaja Bogdan Calin on tehnyt tarkempaa analyysia tuosta yli 10 000 Hotmail-käyttäjän salasanasta koostuvasta [...]
[...] Go here to see the original: Acunetix Web Application Security Blog » Statistics from 10000 … [...]
Hi Bogdan,
Congrats for your study. Very clean and very useful.
Could you please provide the list you have used for that study. Is there any place where we can find it?
Thank you very much.
I found the list via Twitter. It was deleted since then. However, I’m sure you can still find it somewhere if you look closely enough.
What’s your password strategy?…
Hotmail, AOL, Yahoo and Google’s Gmail were recently the focus of a major phishing attack that successfully pried the logins and passwords from the fingers of less-than-savvy users of those service. The attack came to light when login information for….
[...] numeric and only six per cent mixed up alpha-numeric and other characters, according to a separate analysisof the data by web application security firm [...]
Why does people use so simple passwords? The best trick is to use the same cryptical password, but with another letter at the beginning etc.! Easy to remember and never the same.
[...] but it’s popular on Hotmail. That’s according to Bogdan Calin, a defense researcher who got hold of 10,000 stolen Windows Live Hotmail usernames and passwords that were posted to the Web site [...]
[...] but also the weak password choices that a number of users choose for themselves. This article by Acunetix explains that a copy of the list of user names and passwords was obtained before the original [...]
[...] というわけで上記記事から抜粋。 先日『Hotmail』『MSN』『Live.com』の1万件に上るパスワードがオンラインに流出したが、このリストを調べた研究者が、分析結果を発表した。これによると、最もよく使われているパスワードは「123456」だった(64件)。 [...]
[...] popular on Hotmail. That’s according to Bogdan Calin, a safety measure researcher who got hold of 10,000 stolen Windows Live Hotmail usernames and passwords that were posted to the Web site [...]
tequiero is iloveyou in spanish
tequiero – 9
iloveyou – 7
[...] não ser uma senha muito segura, mas é uma das mais populares no Windows Live Hotmail. Pelo menos é o que diz Bogdan Calin, um pesquisador de segurança que teve acesso à lista com 10 mil senhas roubadas do Windows Live [...]
[...] Specifics from Acunetix, which provided a breakdown: http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/# [...]
[...] to a statistical analysis of the 10,000 passwords published by Bogdan Calin at Acunetix, 42% of the phished users use lower alpha passwords only (a [...]
[...] This post was Twitted by ThierryRoget [...]
[...] passwords and emails can help to give hackers access to bank accounts and other web pages. A researcher who examined the list of compromised names and passwords found that a number of the passwords were [...]
[...] bien, los chicos de Acunetix se hicieron con la primera lista de contraseñas filtradas para realizar un análisis y la conclusión es clara: los usuarios de Internet siguen usando contraseñas muy [...]
[...] you’d necessarily need complex keyword-logging malware to compromise most email accounts. Acunetix has been combing through the original list of 10,000 Hotmail accounts and passwords that appeared [...]
Weak Passwords Discovered in the 10,000 Disclosed Hotmail/Live.com/MSN leaked accounts…
By now, hopefully everyone has heard of the security breach where accounts and passwords were found on…
[...] não ser uma senha muito segura, mas é uma das mais populares no Windows Live Hotmail. Pelo menos é o que diz Bogdan Calin, um pesquisador de segurança que teve acesso à lista com 10 mil senhas roubadas do Windows Live [...]
[...] Calin from the security site Acunetix analyzed the password list and found other disturbing trends, too. For example, just 6-percent used [...]
[...] [...]
[...] series of consecutive numbers was the password to 64 e-mail accounts on the list. Bogdan Calin from the security site Acunetix analyzed the password list and found other disturbing trends, too. For example, just 6-percent used [...]
[...] and they tried to enter the same password again and again, thinking the password was wrong,” Calin wrote. An unsophisticated phisher might have accepted every attempt at repeating a password in sequence; [...]
[...] the apparent shocking statistics regarding the lack of thought and security we end-users place when conjuring up passwords. Gasp! Someone actually used 1234567 as a password? Security consultants around the globe are [...]
[...] The news, which can’t help but remind TechRadar of a scene from sci-fi spoof Spaceballs, comes from Acuntetix blogger Bogdan Calin. [...]
[...] Más info en acunetix security blog [...]
I believe the Security is causing the Insecurity:
http://mlaman.wordpress.com/2009/10/07/insecure-secure/
The data is unreliable, as these are assumed to be from a phishing scam. The best statistics you will get would only apply to the population of users that will fall for a phishing scam. Also, this is assuming the passwords are real (I sometimes spitefully enter false information into phishing scams). Personally, I’d like to know how different the statistics would be for people that did not fall for the same scam.
[...] it’s popular on Hotmail. That’s according to Bogdan Calin, a security researcher who got hold of 10,000 stolen Windows Live Hotmail usernames and passwords that were posted to the Web site [...]
[...] informa Wired, Bogdan Calin, de la web Acunetix, grabó la lista de passwords antes de que desapareciera. En su análisis de los 10.000 usuarios [...]
Are people with the name Alejandra or Alejandro predispositioned to come up with bad passwords?
[...] still have very silly, easily guessed passwords. For example, the security firm Acunetix did an analysis of the leaked Hotmail passwords; the most common was [...]
[...] to Calin’s report, the most common password used in the accounts (64 total) was “123456.” Countless other [...]
[...] it’s popular on Hotmail. That’s according to Bogdan Calin, a security researcher who got hold of 10,000 stolen Windows Live Hotmail usernames and passwords that were posted to the Web site [...]
[...] un análisis, de las 10.000 claves reveladas de Hotmail, la más común fue “123456″, seguida por [...]
[...] è tempo di analizzare la cosa, e per evitare che ciò si ripeta, il primo passo è capire come sia potuta [...]
[...] and they tried to enter the same password again and again, thinking the password was wrong,” Calin wrote. An unsophisticated phisher might have accepted every attempt at repeating a password in sequence; [...]
[...] revista ‘Wired’ se ha hecho eco del análisis de la web de seguridad Acunetix, que archivó las contraseñas antes de que fueran eliminadas de la Red y ha publicado los patrones [...]
[...] de Acunetix Security Blog [...]
I cannot remember what I cannot remember. Cyber society built on this sort of password-system is a sand castle. One solution could be expanding the password sysytem to include graphis and photos in addition to characters so that uses will be able to select what they are good at from among them. One such solution named Mnemonic Guard is becoming well known in Japan.
Couldn’t someone to tell Microsoft to send a mail to compromised accounts or instead put a site on the web where to ask if your password has been compromised?
It seem incredible asking all people in hotmail to reset their password for a 10.000 leak.
NOTE: Maybe, if you had the names of the accounts, you could be so kind to put a web form to ask if for my account.
Many Thanks
Your account is not on the list
But it’s a good security practice to change all your important passwords regularly. It depends on you how regularly.
Thank you very much, Mr. Bogdan
[...] revista ‘Wired‘ se ha hecho eco del análisis de la web de seguridad Acutinex, que archivó las contraseñas antes de que fueran eliminadas de la Red y ha publicado los patrones [...]
[...] many people would have accessed and used the stolen data but one security researcher by the name of Bogdan Calin decided to analyse the usernames and passwords. His report came up with some very surprising (or [...]
I’ve noticed a major flaw if you login via MSN Messenger. It ISN’T case sensitive!
ie. if you use a upper and lower case alphas in your password, then it doesn’t matter if you type PaSSwoRD or password or PASSWORD.
A huge oversight.
[...] por la revista estadounidense Wired, que a su vez la extrajo del informe que hizo la web seguridad Acutinex sobre el ataque de phishing. Acutinex almacenó las contraseñas publicadas en pastebin.com antes [...]
[...] Acunetix via [...]
[...] dot. jakości haseł dostępu na podstawie incydentu z Hotmail Źródło: Acunetix Blog, [...]
@Pogo: If what you are saying is true that’s very dangerous. I don’t use MSN to test it out.
[...] análisis estadístico realizado sobre las contraseñas de las cuentas afectadas, publicados por los expertos en seguridad de Acunetix, se desprendían algunos datos curiosos. La [...]
i was hoping for 8675309 to pop up on the list! lol
[...] de plus de 10 000 adresses Hotmail a été téléversée sur un site qui se nomme Pastebin. Une firme spécialisée en sécurité qui a mis la main sur cette liste a trouvé que le mot de passe le plus utilisé est [...]
” 6 %; mixed alpha + numeric + other characters.” only 6% of good passwords? damm…
I can’t believe it
My hotmail password is also 123456
But here’s a catch, its a /dev/null email account I use to give to sites which refuse to serve me stuff without registering, so it’s a sink for their spam crap.
I wouldn’t be so quick to judge us all idiots, not everyone wants or needs a high level security and different randomized complex passswords for every authenticatable piece of asset we have. Crappy hotmail account is definitely not one.
every rule has an exception.
[...] publicadas en PasteBin, sitio que las eliminó, pero antes fueron guardadas por Bogdan Calin de Acunetix. Esta lista solo contenía cuentas que empazaban por “A” o “B”, lo cual [...]
[...] contraseñas expuestas por estos hackers ya han sido analizadas por un experto que ha constatado lo que ya muchos sabemos, la mayoría son tan simples que hasta un [...]
[...] presento el listado con las contraseñas más [...]
[...] “Depois de fazer a limpeza, removendo todas as entradas sem senhas, consegui 9.843 entradas válidas, das quais 90% eram únicas”, explica Calin. [...]
[...] http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/ about a minute ago from Gwibber [...]
[...] – 5 Statistics from 10,000 leaked Hotmail passwords Weak passwords dominate statistics for Hotmail's phishing scheme leak fault: It was plain human [...]
[...] voyant que le côté positif de la chose, le site Acunetix en a profité pour réaliser une analyse et nous délivrer des statistiques très contrariantes ! [...]
[...] security researcher by the name of Bogdan Calin decided to analyse the usernames and passwords. His report came up with some very surprising (or in some cases unsurprising) [...]
[...] pe internet. Un expert roman in securitate, Bogdan Calin a decis sa analizeze parolele conturilor. Rezultatul este unul surprinzator poate pentru unii. Iata unele [...]
[...] Innej, bardzo ważnej analizy, która uwidacznia duży problem, podjął się Bogdan Calin, specjalista ds. bezpieczeństwa z firmy Acunetix. Bogdan Calin poddał analizie hasła, które zostały wykradzione. Wyniki analizy są przerażające. Okazuje się bowiem, że spora część przeanalizowanych haseł charakteryzuje się małym skomplikowaniem – są zwyczajnie “słabe”. Najpopularniejszym hasłem na liście było “123456” a kolejnym “123456789“. Analiza wskazała, że najwięcej haseł składa się z 6 – 9 znaków, przy czym z 6 znaków składało się aż 22%, a z 8 znaków około 21%. Pełna analiza została przedstawiona na oficjalnym blogu firmy Acunetix. [...]
[...] Acunetix Web Application Security Blog » Statistics from 10,000 leaked Hotmail passwords パスワード解析 基礎と実践 著者/訳者:IPUSIRON 出版社:データ・ハウス( 2008-10-23 ) 定価:¥ 2,625 Amazon価格:¥ 2,625 単行本(ソフトカバー) ( 316 ページ ) ISBN-10 : 4887189869 ISBN-13 : 9784887189867 ソーシャルブックマークに登録 [...]
[...] abgefischten Benutzer ihre E-Mailkonten gesichert hatten. Eine Statistik darüber findet sich bei acunetix; hier nur ein paar Beispiele aus den Top 20 (insgesamt 10.024 [...]
[...] fuente para conocer algunas tendencias entre las personas. Eso es lo que pensó Bodgan Calin de Acunetix, quien pudo descargar los datos antes de que fueran eliminados e hizo un completo análisis de las [...]
[...] Calin, un especialista en seguretat informàtica d’Acunetix ha fet un estudi de les deu mil contrasenyes de Hotmail que, segons us explicàvem dimarts, s’havien publicat [...]
[...] to Calin’s report, the most common password used in the accounts (64 total) was “123456.” Countless other [...]
[...] (Credit: Acunetix [...]
[...] fuente para conocer algunas tendencias entre las personas. Eso es lo que pensó Bodgan Calin de Acunetix, quien pudo descargar los datos antes de que fueran eliminados e hizo un completo análisis de las [...]
[...] fuente para conocer algunas tendencias entre las personas. Eso es lo que pensó Bodgan Calin de Acunetix, quien pudo descargar los datos antes de que fueran eliminados e hizo un completo análisis de las [...]
What’s worse is that some NY based national banks now only allow 4 digit PINs for ATMs. The teller asked if she could help with anything else- I complained about that and she told me to go online. Nice. Told her it was way less secure than the old 6 digit code.
[...] 한 보안 연구원이 사용자명과 비밀번호를 분석하였다. 그의 보고서에는 (report) 매우 놀라운 (어떻게 보면 놀랍지 않지만) 결과들을 찾아 볼 수 [...]
[...] 安全研究人员统计了10月1日泄漏出来的超过1万名Hotmail用户邮箱的密码,发现最常见密码是123456。 统计显示:“123456”重复出现了64次,类似的“1234567”、“12345678”、“123456789”、“111111”高居前十。有42%的密码仅使用了小写的a到z,如“password”或“iloveu”,还有两成左右的密码只符合最低标准的六个字符。值得注意的是,最长的密码达到了三十个字符“lafaroleratropezoooooooooooooo”,但显然未能使这位苦主免于恶意攻击。安全专家表示,10000次中出现64次,乍看之下机率似乎不大,但若黑客配合其它统计资料,以及生日、名字等使用者资料,再结合专业程序进行暴力破解,得手率将非常惊人。 [...]
[...] Więcej statystyk można znaleźć na stronie Acunetix. [...]
[...] which he concluded from the passwords entered by the users. You can find the full report at the Acunetix [...]
[...] saben algunas cosas curiosas después de analizar los datos de la primera lista, ya que la gente de Acunetix pudo copiar la primera lista antes de que fuera retirada de la web en la que se publicó. Por [...]
[...] Calin di Acunetix ha potuto mettere mano sull’intero elenco di password prima che venisse cancellato e, visto [...]
[...] Calin di Acunetix ha potuto mettere mano sull’intero elenco di password prima che venisse cancellato e, visto [...]
Interesting post. Very nice and such a valuable information u shared with us. Thanks for it.
[...] того, Богдан выяснил, что большинство паролей содержат 6, 7, 8 и 9 символов. [...]
[...] fuente para conocer algunas tendencias entre las personas. Eso es lo que pensó Bodgan Calin de Acunetix, quien pudo descargar los datos antes de que fueran eliminados e hizo un completo análisis de las [...]
[...] http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/ a few seconds ago from xmpp [...]
[...] http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/ a few seconds ago from xmpp [...]
[...] of the list of more than 10,000 Windows Live Hotmail passwords and wrote about his findings on the Acunetix blog. He discovered that the most common password was “123456,” used for 64 of the [...]
[...] Hotmail 用戶盡快更改登入密碼. 但怎麼才算一個安全的密碼呢? 薄弱的密碼 Acunetix 利用 PasteBin 上的 Windows Live Hotmail Account 用戶資料, 做了一個統計, [...]
[...] Calin de Acunetix ha estudiado las más de 10.000 cuentas obtenidas del ataque para determinar patrones en las claves [...]
A heretical thought experiment: do strong passwords still matter?…
Is phishing the leading way that criminals are gathering credentials? If so, does this mean using ever-stronger passwords doesn’t confer the protection that it once did?…
[...] datos provee una buena fuente para conocer algunas tendencias entre las personas. Bodgan Calin de Acunetix pudo descargar los datos y realizó un análisis de las [...]
[...] Más info en acunetix security blog [...]
[...] ditt passord med omhu. Denne artikkelen tar for seg en artikkel fra Acunetix.com som har laget en statistikk av 10.000 passord som er lekket fra Hotmail.com. Det som kommer frem av denne artikkelen er i og for seg ikke noen overaskelse. Blandt annet er det [...]
[...] [techspot] & [acunetix] [...]
[...] Calin from the security site Acunetix analyzed the password list and found other disturbing trends, too. For example, just 6-percent used [...]
[...] ولمزيد من المعلومات يمكن قراءة الدراسة كاملة من هنا [...]
[...] Liste der Passworte war im Netz zu finden und Acunetrix, eine britische IT-Security-Beratung hat sich diese angesehen und weitere erschreckende Fakten [...]
[...] This post was Twitted by bit_shift [...]
[...] ولمزيد من المعلومات يمكن قراءة الدراسة كاملة من هنا [...]
[...] (Credit: Acunetix [...]
[...] ولمزيد من المعلومات يمكن قراءة الدراسة كاملة من هنا [...]
[...] 发表: 小蚂蚁 十 11th, 2009 栏目: IT 新闻. You can follow any responses to this entry through the RSS 2.0. You can leave a response or trackback to this entry 安全研究人员统计了10月1日泄漏出来的超过1万名Hotmail用户邮箱的密码,发现最常见密码是123456。统计显示:“123456”重复出现了64次,类似的“1234567”、“12345678”、“123456789”、“111111”高居前十。有42%的密码仅使用了小写的a到z,如“password”或“iloveu”,还有两成左右的密码只符合最低标准的六个字符。值得注意的是,最长的密码达到了三十个字符“lafaroleratropezoooooooooooooo”,但显然未能使这位苦主免于恶意攻击。安全专家表示,10000次中出现64次,乍看之下机率似乎不大,但若黑客配合其它统计资料,以及生日、名字等使用者资料,再结合专业程序进行暴力破解,得手率将非常惊人。 最常见的20个密码: [...]
[...] have analysed the list and found weak passwords are common (no surprises there) but also that a lot of Spanish names are in the top 20 passwords, suggesting [...]
[...] texte traduit du site acunetix No [...]
[...] hat sich mal die zahllosen Hotmail-Passwörter, die vor kurzem an die Öffentlichkeit gelangt sind, genauer angesehen. Die Statistiken sind recht faszinierend. Das beliebteste Passwort (64 mal gewählt) war [...]
[...] (Bonus)Halting State by Charles Top collaboration tools that aren’t Google Wave (Rick Mans) Analysis of leaked/weak passwords [...]
[...] Acunetix Web Application Security Blog » Statistics from 10,000 leaked Hotmail passwords Dieser Beitrag wurde von Dag geschrieben und am 11. Oktober 2009, um 14:22 Uhr veröffentlicht. [...]
[...] eine Betrachtung der geknackten Passwörter der Mail-Accounts bei acunetix bestätigt auch meine Erfahrungen bei meinen [...]
[...] most common password in the now infamous 10,000 was 123456 followed closely by 123456789 (Kudos to Acunetix for the statistical [...]
[...] Vanligaste lösenordet bland de 10.000 snodda lösenorden från Hotmail var: [...]
[...] Eine Übersicht über die am häufigsten verwendeten Passwörter in den gehackten Hotmail-Accounts findet sich auf der Homepage des Sicherheitsunternehmens Acunetix http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/ . [...]
[...] ΠΗΓΗ:Acunetix [...]
[...] de mots de passes uniques On apprend ainsi grâce à l’étude de la société que les suites numéraires 123456, 1234567, 12345678 et 123456789 constituaient le mot de passe de [...]
Where can I view that list? Any one who can help?
[...] fuente para conocer algunas tendencias entre las personas. Eso es lo que pensó Bodgan Calin de Acunetix, quien pudo descargar los datos antes de que fueran eliminados e hizo un completo análisis de las [...]
[...] articolul despre conturile recent “furate” de la utilizatorii Windows Live Hotmail (link). Din analiza lui reiese clar că utilizatorii obişnuiesc să folosească parole mult prea simple [...]
[...] osnovu dostupnih podataka sa 10 hiljada “provaljenih” Hotmail e-mail naloga načinio statističku analizu lozinki. A rezultati su, možda i očekivano, [...]
[...] and foremost, people suck at selecting passwords! Bogdan Calin got his hand on the 10,000 user list and analyzed it. He found out that the most popular password is *drum roll* [...]
[...] not to expose peoples passwords but to make a statistic analisys on the 24k list, similar to this analysis made on the first 10k list of accounts posted on [...]
Here you can find a similar analysis based on the bigger list (24k accounts): http://stormsecurity.wordpress.com/2009/10/12/check-if-your-email-account-has-been-exposed/
[...] que analitza el contingut de la llista. Acunetix, empresa que es dedica a la seguretat al web, ha analitzat estadísticament el contingut de la llista i les conclusions són [...]
[...] 10.028 από τα παραπάνω accounts και passwords που κλάπηκαν και τα χρησιμοποιείσαι για να βγάλει μερικά πολύ ενδιαφέροντ…. Αρχικά αυτό που έκανε ο Calin ήταν να “καθαρίσει” τη [...]
[...] if you have a password like this, please, don´t say anything and slowly go and change it. Calin’s statistics show the length distribution of passwords, as well as the types of characters most frequently used. The [...]
[...] revista ‘Wired’ se ha hecho eco del análisis de la web de seguridad Acutinex, que archivó las contraseñas antes de que fueran eliminadas de la Red y ha publicado los patrones [...]
[...] 10.028 από τα παραπάνω accounts και passwords που κλάπηκαν και τα χρησιμοποιείσε για να βγάλει μερικά πολύ ενδιαφέροντα…. Αρχικά αυτό που έκανε ο Calin ήταν να “καθαρίσει” τη [...]
[...] 有位匿名人士在网上公布了10,000个Hotmail的用户名和密码。于是有好事者对这些密码做了个,分析发现:90%的密码都是只出现了一次,最长的密码有30个字符:lafaroleratropezoooooooooooooo,最短的密码只有1个字符:)。 [...]
[...] off of Windows Live Hotmail accounts (probably through a phishing attack) and posted online. Security site Acunetix performed an analysis of the passwords, and the results are (if you are a security fanatic) a little bit [...]
[...] consultor de seguridad, tras un rápido análisis de un fichero que contenía 10.000 contraseñas robadas, ha facilitado [...]
I also heard that 12345 is the most common password in whole world.. So if anyone is using this password is suggested to change their password…
[...] informação foi revelada pelo investigador de segurança Bogdan Calion no seu blogue . Calin observou as 10 mil contas comprometidas pelos hackers e descobriu que das 9843 passwords [...]
[...] onderzoeker ontdekte dat ‘123456′ het meest voorkomende wachtwoord is en wachtwoorden het vaakst [...]
[...] Acunetix Web Application Security Blog » Statistics from 10000 … [...]
[...] revista ‘Wired’ se ha hecho eco del análisis de la web de seguridad Acunetix, que archivó las contraseñas antes de que fueran eliminadas de la Red y ha publicado los patrones [...]
[...] – Nei giorni scorsi si è molto discusso in Rete sulle 10mila password di Hotmail «rubate» e rese pubbliche e si è attirata l’opinione pubblica sulla medesima [...]
[...] Ein solcher Fund kommt den Entwicklern sicherlich nur selten unter die Augen. Doch dabei haben sie wirklich Erschreckendes zutage gefördert. Das häufigste Passwort der betroffenen Hotmail-Nutzer lautete [...]
[...] UPDATE : Oct 09. In the light of the recent Hotmail phishing incident one thing it did allow was an analysis of passwords. Visit the Acunetix Web Security site for a list of the Top 20 most popular passwords and a breakdown of the pa… [...]
[...] that had been lifted from Windows Live Hotmail accounts. An online internet security company analyzed these passwords and found some very distressing [...]
[...] – 42 % (lower alpha only) – 19 % (numeric only) – 6 % from all the passwords had passwords which use a selection of alpha numeric and other characters. Statistics from 10,000 leaked Hotmail passwords [...]
[...] http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/ [...]
This was the start for our corporate blog. You can view the materials at: http://ptresearch.blogspot.com/2009/11/password-analysis-for-windows-live.html
[...] Source Tags: hotmail, leaked, passwords This entry was posted on Tuesday, October 13th, 2009 at 10:48 am and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site. blog comments powered by Disqus var disqus_url = 'http://www.expert-pc.co.cc/?p=91 '; var disqus_container_id = 'disqus_thread'; var facebookXdReceiverPath = 'http://expert-pc.co.cc/wp-content/plugins/disqus-comment-system/xd_receiver.htm'; var DsqLocal = { 'trackbacks': [ ], 'trackback_url': 'http://expert-pc.co.cc/wp-trackback.php?p=91' }; [...]
[...] cuentas de Hotmail por una persona anónima. Sobre dicha lista de contraseñas, se ha realizado un estudio estadístico, y podemos resaltar las siguientes [...]
[...] que no está de más que le eches un vistazo a ESTE RANKING y si por casualidad eres uno de los que usa alguna de ellas ya sabes lo que tienes que hacer. Por [...]
I think there are certain Passwords which are very common and are used by everywhere. So we should use the strong passwords.
[...] password por si acaso, ya que despues de analizar la lista y sacar algunas estadisticas (sacadas de Acunetix), abajo el top 20 de passwords más usados. El numero uno de la lista es el prerferido de muchos [...]
[...] beaucoup d’internautes. Bogdan Calin, chercheur en sécurité à Acunetix, a publié sur son blog la liste des 20 mots de passe les plus courants parmi les comptes hackés la semaine dernière. Les deux [...]
[...] Firma Acunetix hat sich dem Thema Passwortschutz gewidmet und eine Liste veröffentlicht. In dieser Liste kann [...]
[...] comme les comptes de courriel sont les plus utilisés au monde, je vous ai retracé une excellente analyse sur plus de 10 000 mots de passe utilisés sur Hotmail qui ont été dévoilés sur le Web par une [...]
[...] não ser uma senha muito segura, mas é uma das mais populares no Windows Live Hotmail. Pelo menos é o que diz Bogdan Calin, um pesquisador de segurança que teve acesso à lista com 10 mil senhas roubadas do Windows Live [...]
oops.123456…
someone tell us to change password for a period.i use long but not so memorable password that i always forget my password. my friend suggest me to use the software called password genius. i tried, and find it very amazing that it only took a few minutes to find out the password. I highly recommend it to you. here it is:
http://www.password-genius.com/how-to/how-to-find-out-my-windows-live-messenger-password-msn-password.html
[...] potrete vedere di persona le statistiche collegandovi al sito Acunetix. VN:F [1.7.9_1023]please wait…Rating: 0.0/10 (0 votes cast)VN:F [1.7.9_1023]Rating: 0 (from 0 [...]
[...] Acunetix Web Application Security Blog » Statistics from 10000 … [...]
[...] “123456” also topped a similar chart based on statistical analysis of 10,000 Hotmail passwords published in October, 2009 by [...]
[...] noe vet vi etter at 10.000 passord kom på avveie fra eposttjenesten Hotmail. Bogdan Calin, blogger stort sett om sikkerhet, kunne fortelle at ved det siste store phishing tilfellet av [...]
[...] item 3: http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/ An anonymous user posted usernames and passwords of over 10,000 Windows Live Hotmail accounts to a [...]
My msn and facebook have been hacked for one week ago. And i cant find any way to solve it. Can someone please help me? i’m student and i need my email so much. If there is someone can help me then please email me. Thanks
[...] http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/ [...]
[...] 10000 mots de passe Hotmail et près de 45000 mots de passe MySpace sont retrouvés publiés dans la [...]
[...] сочинением сложных паролей. Об этом свидетельствует анализ украденных паролей Hotmail, проведенный специалистом по [...]
[...] 10000 mots de passe Hotmail et près de 45000 mots de passe MySpace sont retrouvés publiés dans la [...]
[...] Live Hotmail Passwörter in eine öffentlich zugängliche Webseite gepostet (“Statistics from 10,000 leaked Hotmail passwords“). Niemand weiß, wie der anonyme User an die Passwörter kam. Umso erschreckender [...]
[...] potrete vedere di persona le statistiche collegandovi al sito Acunetix. amm_ad_siteid = 1888; amm_ad_zone = 17844; amm_ad_width = 336; amm_ad_height = 280; Ti [...]
[...] in den gehackten Hotmail-Accounts findet sich auf der Homepage des Sicherheitsunternehmens Acunetix http://www.acunetix.com/blog/websecuritynews/statistics-from-10000-leaked-hotmail-passwords/ . [...]
[...] but meanwhile, please don't use your dog's name, boyfriend's birthday or favorite football team. A jaw-dropping analysis of 10,000 stolen passwords last year showed that the top 20 most common ones included 123456, 123456789, 111111 and america. [...]
12345? That’s the stupidest combination I’ve heard of in my life! That’s the kind of thing an idiot would have on his luggage!
[...] glaubt, lange Passwörter nehmen – das würden doch eh alle machen, lese diesen Beitrag; oder diesen. Shocking! Auch gut zu wissen: 10 oder 12 Stellen reichen möglicherweise nicht mehr, da SSDs [...]
wow nice statistics….I am going to go change all my passwords to better ones right now…. you really have me thinking
My msn and facebook have been hacked for one week ago. And i cant find any way to solve it.
[...] passwords were revealed and constructed charts specifying which were most common, you can find that here. The main thing I learned is that if your password is “123456″ — change it immediately. Other [...]
[...] suffered a breach, in 2009. An analysis of the 10,000 password leaked in that incident reveals the most popular password to [...]
[...] which he concluded from the passwords entered by the users. You can find the full report at the Acunetix [...]
[...] According to statistics from 10,000 leaked Hotmail passwords, [...]
Hey this is really very good post. I liked it
the phishing kit used most probably was badly designed, since it was one that didn’t further authenticated the users to the Hotmail/Live website. I think it just returned an error message after grabbing the credentials.
[...] sobre las contraseñas más comunes usadas en Hotmail (en inglés) http://www.acunetix.com/blog/websecuritynews/s…; [...]
[...] recent post at Acunetix shows statistics on 10,000 recently leaked Hotmail passwords. The ten most common passwords on [...]