haveibeenpwned.comCollection #1
In January 2019, a large collection of credential stuffing lists (combinations of email addresses and passwords used to hijack accounts on other services) was discovered being distributed on a popular hacking forum. The data contained almost 2.7 billion records including 773 million unique email addresses alongside passwords those addresses had used on other breached services. Full details on the incident and how to search the breached passwords are provided in the blog post The 773 Million Record "Collection #1" Data Breach.
troyhunt.comThere are 21,222,975 unique passwords.
I recommend to everyone to check if your password is on this list on haveibeenpwned.com/Passwords .
If you are sceptical about entering your password there you can download the whole database of hashed passwords on the bottom of that site and try to look for yourself.
The password generator of my choice would be XKPasswd as there are multiple presets to choose from for generating the password.
[quote=haveibeenpwned.com][h]Collection #1[/h]
In January 2019, a large collection of credential stuffing lists (combinations of email addresses and [b]passwords[/b] used to hijack accounts on other services) was discovered being distributed on a popular hacking forum. The data contained almost 2.7 billion records including [b]773 million unique email addresses alongside passwords[/b] those addresses had used on other breached services. Full details on the incident and how to search the breached passwords are provided in the blog post [url=https://www.troyhunt.com/the-773-million-record-collection-1-data-reach/]The 773 Million Record "Collection #1" Data Breach[/url].[/quote]
[quote=troyhunt.com]There are 21,222,975 unique passwords.[/quote]
I recommend to everyone to check if your password is on this list on [url=https://haveibeenpwned.com/Passwords]haveibeenpwned.com/Passwords[/url] .
If you are sceptical about entering your password there you can download the whole database of hashed passwords on the bottom of that site and try to look for yourself.
The password generator of my choice would be [url=https://xkpasswd.net/s/]XKPasswd[/url] as there are multiple presets to choose from for generating the password.
majority of passwords from the new dump were already out there in one of the previous ones. still good to change them
majority of passwords from the new dump were already out there in one of the previous ones. still good to change them
My password is password1 pls don't tell anyone
My password is password1 pls don't tell anyone
123456 has been seen 23,174,662 times
TeamFortress2 has been seen 72 times
teamfortress has been seen 302 times
tf2 has been seen 86 times
valve has been seen 533 times
steam has been seen 4474 times
discord has been seen 821 times
It's insane that theres this many people using passwords w/o numbers and capitals
123456 has been seen 23,174,662 times
TeamFortress2 has been seen 72 times
teamfortress has been seen 302 times
tf2 has been seen 86 times
valve has been seen 533 times
steam has been seen 4474 times
discord has been seen 821 times
It's insane that theres this many people using passwords w/o numbers and capitals
the password 'b4nny' has been seen three times
the password 'kaidus' has been seen six times
the password 'b4nny' has been seen three times
the password 'kaidus' has been seen six times
the password 'bruhmoment' has been seen zero times
the password 'bruhmoment' has been seen zero times
dragonwarrior12: This password has been seen 7 times before
dragonwarrior12: This password has been seen 7 times before
aw damn benshapiro has been seen 15 times before now i gotta switch my password on steam
aw damn benshapiro has been seen 15 times before now i gotta switch my password on steam
[img]https://i.gyazo.com/3950f0c2b1e8fdce81a7cc59c59152d8.png[/img]
glassthe password 'b4nny' has been seen three times
the password 'kaidus' has been seen six times
There we have it guys: kaidus > b4nny
[quote=glass]the password 'b4nny' has been seen three times
the password 'kaidus' has been seen six times[/quote]
There we have it guys: kaidus > b4nny
gbj123456 has been seen 23,174,662 times
TeamFortress2 has been seen 72 times
teamfortress has been seen 302 times
tf2 has been seen 86 times
valve has been seen 533 times
steam has been seen 4474 times
discord has been seen 821 times
It's insane that theres this many people using passwords w/o numbers and capitals
i dont think putting complex characters in, say a 8 char string makes any big difference over a normal string. It's better to have a long sentence of normal words rather than having the PITA of remembering wh1cH 133T'$p33k you used.
Also I couldnt find a way to search for a combo after seeing one broken password.
[quote=gbj]123456 has been seen 23,174,662 times
TeamFortress2 has been seen 72 times
teamfortress has been seen 302 times
tf2 has been seen 86 times
valve has been seen 533 times
steam has been seen 4474 times
discord has been seen 821 times
It's insane that theres this many people using passwords w/o numbers and capitals[/quote]
i dont think putting complex characters in, say a 8 char string makes any big difference over a normal string. It's better to have a long sentence of normal words rather than having the PITA of remembering wh1cH 133T'$p33k you used.
Also I couldnt find a way to search for a combo after seeing one broken password.
Twiggyi dont think putting complex characters in, say a 8 char string makes any big difference over a normal string. It's better to have a long sentence of normal words rather than having the PITA of remembering wh1cH 133T'$p33k you used.
26^n < 62^n
[quote=Twiggy]
i dont think putting complex characters in, say a 8 char string makes any big difference over a normal string. It's better to have a long sentence of normal words rather than having the PITA of remembering wh1cH 133T'$p33k you used.
[/quote]
26^n < 62^n
Estrogen_took_my_homie is clean boys
Estrogen_took_my_homie is clean boys
A fun anecdote.
As a private individual I used to think I was pretty good at generating passwords and stewarding my various financial transactions on the internet and so far, I haven't had a major breech or financial set back.
But since becoming responsible for the administration of a company credit card - from the same bank I've always used as a private individual - it has been stolen 4 times in 3 years. Luckily the bank has caught the offending transactions before they ever cleared all 4 times, but clearly I wasn't doing enough.
A fun anecdote.
As a private individual I used to think I was pretty good at generating passwords and stewarding my various financial transactions on the internet and so far, I haven't had a major breech or financial set back.
But since becoming responsible for the administration of a company credit card - from the same bank I've always used as a private individual - it has been stolen 4 times in 3 years. Luckily the bank has caught the offending transactions before they ever cleared all 4 times, but clearly I wasn't doing enough.
i admit my pw is kaidus but that's only because i couldnt think of anything then i looked to my shrine and it clicked
i admit my pw is kaidus but that's only because i couldnt think of anything then i looked to my shrine and it clicked
bleghfarecthe password 'bruhmoment' has been seen zero times
kaidus>b4nny
[quote=bleghfarec]the password 'bruhmoment' has been seen zero times[/quote]
kaidus>b4nny
the password 'skeez' has been seen 52 times
the password 'skeez' has been seen 52 times
I think it's ironic that "correcthorsebatterystaple" has been seen 114 times
I think it's ironic that "correcthorsebatterystaple" has been seen 114 times
corsa has been seen 2,960 times before
corba has been seen 107 times before
corsakart has been seen 2 times before
corsa has been seen 2,960 times before
corba has been seen 107 times before
corsakart has been seen 2 times before
honestly as long as your password isn't a single dictionary word and you dont reuse them its fine
personally i use a password database for important stuff and variations on a simplish password for everything else
honestly as long as your password isn't a single dictionary word and you dont reuse them its fine
personally i use a password database for important stuff and variations on a simplish password for everything else