24 billion usernames and passwords on the dark web | TechBuzz

- Advertisement -




24 billion username-password combinations are offered for sale on cybercriminal marketplaces. This is what Digital Shadows shows in a recent study.

Usernames and associated passwords are stolen en masse and offered for sale on the dark web shortly thereafter. Digital Shadows, a specialist in threat intelligence, has determined the full extent of this trafficking on cybercriminal platforms. The experts counted a whopping 24 billion username-password combinations. This represents an increase of 65 percent from the last survey in 2020. Thus, there are currently almost four access combinations for every person on our planet for sale on the dark web.

Worryingly, users continue to use easy-to-guess passwords. Digital Shadows found that the 50 most common passwords are particularly easy to guess. For example, the word “password” is still used as a digital password or a combination of easy-to-remember numbers. About 0.46 percent of all passwords – almost one in 200 – is therefore on the number combination “123456”. Keyboard combinations such as “qwerty”https://www.com-magazin.de/”qwertz” or “1q2w3e” are also often used.

Of the 50 most common passwords, 49 can be cracked in less than a second using tools that are often available for free on cybercriminal forums and are easy to use.

Special characters work

Simple measures lead to the hackers biting their teeth when it comes to passwords and probably looking for an easier break-in target. For example, adding a special character like “@”, “#” or “_” to a simple 10-character password increases the time it would take an offline attack to crack the password by about 90 minutes. Adding two special characters gives an offline cracking time of about 2 days and 4 hours.

READ  The final season of this epic Netflix fantasy series has everyone glued to their screens | TechBuzz
- Advertisement -

Alongside this, like many other cybersecurity specialists, Digital Shadows recommends using password managers to store strong passwords, as well as two or multi-factor authentication, ideally in combination with an authentication app such as Google Authenticator, Microsoft Authenticator or FreeOTP .

Digital Shadows’ full investigation, titled “Account Takeover in 2022,” is available for download on the company’s website.



Source link

- Advertisement -
Admin
Adminhttp://techbuzz.asia
I am admin of techbuzz.asia blog & I provide tech-related news. As a part of my hobby, I make content related to technology and gadgets reviews too. I love to be a content creator apart from it, I am a full-time employee in an MNC company and manage blogs systematically. You can mail me at [email protected]

More from author

Related posts

Advertisment

Latest posts

Apple Watch 8 in comparison: This picture shows how big the smartwatch really is | TechBuzz

The Apple Watch 8 will not be available in two sizes as usual, but in three. Added to this is a new XL...

Asus ROG Phone 6 (Pro) introduced: Gamers will love this phone | TechBuzz

The new Asus ROG Phone 6 in white and black finish. (Image source: Asus) Asus has presented a new smartphone from the ROG series that...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!