Leaked Hotmail passwords 'easily guessable'

Most common password was '123456' Victims of a phishing scam which led to passwords and user names belonging to 1000's Hotmail accounts being posted on the interent used easiliy guessable passwords.

Most common password was '123456'

Victims of a phishing scam which led to passwords and user names belonging to 1000's Hotmail accounts being posted on the interent used easiliy guessable passwords.

Many passwords used easily guessable strings of numbers or letters, ananalysis of 10,000 of the leaked passwords, by US security researcher Bogdan Calin, CTO of security companyAcunetixreveals.

The most common Hotmail password was 123456, which appeared 64 times, followed by 123456789, which appeared 18 times. Other common passwords included alberto, iloveyou and 000000.

The longest password in the list, at 30 chars long was "lafaroleratropezoooooooooooooo". The shortest password was 1 char long " )."

Some 42% of passwords contained only letters of the alphabet 19% of the passwords contained only the numbers 0 to 9,while only 3% contained a combination of both, Calin found.

"My impression is that these passwords have been gathered using phishing kits. Even more, the phishing kit used most probably was badly designed, since it was one that didn't further authenticated the users to the Hotmail/Live website. I think it just returned an error message after grabbing the credentials," said Calin in a web posting.

Scale of webmail phishing scam widens

Top 20 most popular passwords

1. 123456 - 64

2. 123456789 - 18

3. alejandra - 11

4. 111111 - 10

5. alberto - 9

6. tequiero - 9

7. alejandro - 9

8. 12345678 - 9

9. 1234567 - 8

10. estrella - 7

11. iloveyou - 7

12. daniel - 7

13. 000000 - 7

14. roberto - 7

15. 654321 - 6

16. bonita - 6

17. sebastian - 6

18. beatriz - 6

19. mariposa - 5

20. america - 5

Read more on Hackers and cybercrime prevention

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close