Microsoft: 44 million Microsoft accounts use leaked passwords

I

Imranmt

Level 3
Thread author
Verified
Nov 14, 2016
113
Content source
https://www.ghacks.net/2019/12/06/microsoft-44-million-microsoft-accounts-use-leaked-passwords/
Microsoft ran a password-reuse analysis on over three billion company accounts in 2019 to find out how many of the used password were in use by Microsoft customers.
The company collected password hash information from public sources and received additional data from law enforcement agencies, and used the data as a base for the comparison.
An analysis of password use in 2016 revealed that about 20% of Internet users were reusing passwords, and that an additional 27% were using passwords that were "nearly identical" to other account passwords. In 2018, it was revealed that a large part of Internet users were still favoring weak passwords over secure ones.
Click to expand...
 
  • Like
Reactions: TairikuOkami, upnorth, AtlBo and 3 others
TairikuOkami

TairikuOkami

Level 35
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,479
I used the same nick/email/Password123 for an easy access on 90% not so important sites for years and none of my accounts was ever stolen. The same goes for company passwords, that those scareware articles are based on. It would be great to make an analysis based on important accounts. MS's policy is the worst, it remembers all past passwords, like when I changed the password, it refused to let me to use the same.
Antus67 said:
In today's cyber world changing your password on a regular basis is a must!!!
Click to expand...
That is no longer recommended, then again, some services get hacked and they hide it from users, so it is a good practice for skilled users.
www.ftc.gov

Time to rethink mandatory password changes

www.ftc.gov www.ftc.gov
I go on to explain that there is a lot of evidence to suggest that users who are required to change their passwords frequently select weaker passwords to begin with, and then change them in predictable ways that attackers can guess easily. Unless there is reason to believe a password has been compromised or shared, requiring regular password changes may actually do more harm than good in some cases. (And even if a password has been compromised, changing the password may be ineffective, especially if other steps aren’t taken to correct security problems.)
Click to expand...
Not to mention, that changing the password is the most used method of phishing, either by sending a phishing link or by monitoring the change.
 
  • Like
  • +Reputation
Reactions: harlan4096, Antus67, Venustus and 2 others
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
    • Thanks
The most hacked passwords list 2023
Replies
2
Views
1,362
News Archive
plat
P
Gandalf_The_Grey
    • Applause
    • Wow
    • +Reputation
Security News Ukraine arrests hackers trying to sell 100 million stolen accounts
Replies
0
Views
953
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Like
    • Wow
    • Thanks
Microsoft denies data breach, theft of 30 million customer accounts
Replies
6
Views
1,362
News Archive
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top