Dictionary Attack

Of course, one Administrator can build the best protections to avoid intrusion on your system, but if your users use always the same predictable passwords there’s no way out.


 

According to a Keeper Security study, here is a list of the most common passwords ever produced consciously by users:

  • 123456
  • 123456789
  • qwerty
  • 12345678
  • 111111
  • 1234567890
  • 1234567
  • password
  • 123123
  • 987654321
  • qwertyuiop
  • mynoob
  • 123321
  • 666666
  • 7777777
  • 1q2w3e4r
  • 654321
  • 555555
  • google
  • 1q2w3e4r5t
  • 123qwe
  • zxcvbnm
  • 1q2w3e

But there’s more. If a user uses a “single word” included in any languages’ vocabulary, his password can be easily detected using the Dictionary attack.

It could be implemented thanks to a script that progressively tries all the words of all languages’ vocabulary. An approximate number of all words known in the world is 5,000,000 considering Chinese and Italian languages. But the list of most common words is lighter: it consists in a dictionary of 60-100,000 words.

How much time does a script take to test all of them to penetrate your system? Minutes.

 

It’s an easy but effective technique.
In order to protect your system against this kind of attack you should force users to have at least a number, a special character or an uppercase letter in their password.
A preventive test could be done here: Password Checker.

Thanks to a user of ours: Emma Roberts, we would like to suggest a Free Password Generator Tool:  VPNMentor’s Secure Password Generatorplease find which fits you best!

Contact us

Feel free to contact us for commercial or technical questions

Copyright All Rights Reserved 2018 CRM Defender - Lion Solution Srls