Comments on: Passwords of Plenty*: what 442773 leaked Yahoo! accounts can tell us http://www.welivesecurity.com/2012/07/12/passwords-of-plenty-1-what-nearly-450000-leaked-yahoo-accounts-can-tell-us/ News, Views, and Insight from the ESET Security Community Mon, 03 Feb 2014 08:49:00 +0000 hourly 1 http://wordpress.org/?v=3.7 By: Richard http://www.welivesecurity.com/2012/07/12/passwords-of-plenty-1-what-nearly-450000-leaked-yahoo-accounts-can-tell-us/#comment-996 Tue, 24 Jul 2012 21:35:34 +0000 http://blog.eset.com/?p=14224#comment-996 Problem is two-fold: 1) users being allowed to choose weak passwords by poorly designed register systems. 2) users picking the poor passwords. These two points are probably made moot when the hashing methods are discovered but even if a database is accessed and records downloaded, the hashing method should be difficult to defeat.

]]>
By: Batfan http://www.welivesecurity.com/2012/07/12/passwords-of-plenty-1-what-nearly-450000-leaked-yahoo-accounts-can-tell-us/#comment-995 Sat, 14 Jul 2012 03:01:03 +0000 http://blog.eset.com/?p=14224#comment-995 how predictable that superman fans would pick something obvious as a password.

]]>
By: Stephen Cobb http://www.welivesecurity.com/2012/07/12/passwords-of-plenty-1-what-nearly-450000-leaked-yahoo-accounts-can-tell-us/#comment-994 Thu, 12 Jul 2012 20:12:25 +0000 http://blog.eset.com/?p=14224#comment-994 Great points David, and the advice about password selection should be of value to the more than one million members of the Phandroid community who just learned that their user names and passwords were compromised. Clearly all of these folks will need to change their passwords on Phandroid, and anywhere else that they may have used the same name and password combination. Pending an explanation of how this security breach occured, Phandroid should get some credit for the detailed disclosure it made to members.

]]>