Tuesday , January 21 2025

AI can crack half of common passwords in less than a minute

A new study by a cybersecurity firm has revealed that most commonly used passwords are vulnerable to artificial intelligence (AI) tools and can be cracked almost instantly.

AI chatbots like ChatGPT have made it easier to perform tasks just by sending prompts. However, it seems these large tools are also very good at creating fresh cybersecurity concerns.

Multiple Azure DevOps Vulns Allow To Inject CRLF Queries & Rebind DNS

Security researchers have found several vulnerabilities in Azure DevOps that could enable attackers to inject CRLF queries and carry out...
Read More
Multiple Azure DevOps Vulns Allow To Inject CRLF Queries & Rebind DNS

Intel holds 22 employees from one Bangladeshi University

Intel Corporation is a leading semiconductor chip manufacturer, employing at least 22 graduates from the Department of Applied Chemistry and...
Read More
Intel holds 22 employees from one Bangladeshi University

VPN Surge 1500% in USA after TikTok Shut Down

vpnMentor’s Research Team is monitoring the potential TikTok ban in the U.S., driven by national security and data privacy issues....
Read More
VPN Surge 1500% in USA after TikTok Shut Down

MITRE Launches D3FEND 1.0; The Milestone for Cybersecurity Ontology

MITRE launched D3FENDTM 1.0, a cybersecurity framework that provides a vocabulary and understanding of the cyber domain. D3FEND 1.0, funded...
Read More
MITRE Launches D3FEND 1.0; The Milestone for Cybersecurity Ontology

AWS Patches Multiple Vulns in WorkSpaces, AppStream 2.0

Amazon Web Services (AWS) has recently fixed two major security vulnerabilities in its cloud services: Amazon WorkSpaces, Amazon AppStream 2.0,...
Read More
AWS Patches Multiple Vulns in WorkSpaces, AppStream 2.0

Malware Trends Review 2024: Ever Recorded Cyber Threats

Last year saw a significant rise in cyber threats, with malware becoming more advanced and attack strategies more sophisticated. A...
Read More
Malware Trends Review 2024: Ever Recorded Cyber Threats

Botnet Exploits 13,000 MikroTik Devices Abusing Misconfigured DNS

A recent Infoblox Threat Intel report reveals a sophisticated botnet that exploits DNS misconfigurations to spread malware widely. This botnet,...
Read More
Botnet Exploits 13,000 MikroTik Devices Abusing Misconfigured DNS

CVE-2024-9042
Code Execution Vulnerability Found in Kubernetes Windows Nodes

A new security flaw traced, CVE-2024-9042, poses a serious risk to Kubernetes clusters with Windows worker nodes. It has a...
Read More
CVE-2024-9042  Code Execution Vulnerability Found in Kubernetes Windows Nodes

Hacker leaked 15k config files and VPN passwords of FortiGate firewall device

The hacking group "Belsen Group" has posted over 15,000 unique FortiGate firewall configurations online. The data dump, reportedly obtained by exploiting...
Read More
Hacker leaked 15k config files and VPN passwords of FortiGate firewall device

Registration open for 1st Agile Cyber Drill 2025

Registration open for "1st Agile Cyber Drill-2025" scheduled for February 26, 2025 online with an awards ceremony for 9 March...
Read More
Registration open for 1st Agile Cyber Drill 2025

According to a report by Home Security Heroes, a cybersecurity company, AI can easily crack most commonly used passwords and thus pose a huge threat to people who do not bother with more intricate combinations.

For an experiment, the firm used an AI-powered password cracker, dubbed PassGAN – a shortened version of the words “Password” and “Generative Adversarial Networks” (GAN).

In all, more than 15 million commonly used passwords were checked, and the results are disturbing – though not entirely surprising.

The study has revealed that a shocking 51% of common passwords can be cracked in under a minute. This means over half of common passwords are completely insecure. Besides, 61% of passwords can be cracked in under an hour, 71% in a day, and 81% in a month.

password-list
Your passwords are not safe if they’re not complicated enough. Courtesy of Home Security Heroes.

Passwords with up to seven characters can be cracked in under six minutes, even if they incorporate symbols. A password with six characters – including those that use combinations of numbers, upper and lowercase letters, and symbols – can be cracked instantly.

So what’s safe? As per the study, passwords with more than 18 characters are ideal against AI tools – even if only numbers are used. But if you use a password this long and include numbers, lower and uppercase letters, and symbols, it would take the AI tool six quintillion (six billion billion) years to crack it.

PassGAN is a deep-learning tool for password guessing, developed by Stevens Institute of Technology in New Jersey, and the New York Institute of Technology, in 2017.

Researchers first trained a GAN to rapidly learn all the most common human password strategies – dictionary words, numerical sequences, and the like – from databases of tens of millions of known, leaked, common and complex passwords, and simple variations of them. Cybernews also has a database of suchlike available.

Researchers then took the project a notch higher, freeing up the network to create its own rules and patterns, if it so chose, from that training data.

That’s precisely what the AI did, autonomously learning the distribution of real passwords from actual leaks – thus eliminating the need for manual password analysis.

Despite security experts recommending strong and unique passwords, along with two-factor authentication and password managers, people continue using weak codes that even a novice cybercriminal could hack in a couple of moments. Never mind a dedicated AI program.

Check Also

Cybersecurity

$12.9 B Cybersecurity Boom Awaits India for 2030

India has made strides in cybersecurity by clarifying ministerial roles in September 2024 and implementing …

Leave a Reply

Your email address will not be published. Required fields are marked *