Analyzing 20,000 MySpace Passwords

← Back to Stories (view on slashdot.org)

Analyzing 20,000 MySpace Passwords

Posted by ryuzaki0 on Sunday September 17, 2006 @01:15AM from the thats-kinda-scary dept.

Rub3X writes "Author found 20 thousand MySpace passwords on a phishing site and did some tests on them. They were tested for strength, length and a number of other things. Also tested was the most popular password, and the most popular email service used when registering for myspace."

8 of 177 comments (clear)

Min score:

Reason:

Sort:

666 - myname by vrta · 2006-09-17 01:21 · Score: 5, Informative

Most common passwords used:
13 - cookie123
12 - iloveyou
12 - password
11 - abc123
11 - fuckyou
11 - miss4you

--
Why don't sheep shrink when it rains?
Re:Already Unreachable by Anonymous Coward · 2006-09-17 01:22 · Score: 3, Informative

Mirrordot http://www.mirrordot.org/stories/65dbc3fb38c8508be da018cb179a7607/index.html
Re:Slashdotted. by Stephan202 · 2006-09-17 01:30 · Score: 3, Informative

I made a copy, with images: http://student.science.uva.nl/~sschroev/junk/myspa ce.html
(If the server does not manage I will remove the page)
mirror by winkydink · 2006-09-17 01:45 · Score: 2, Informative

http://www.networkmirror.com/pMNGiaubQFpIgJLX/cybe r-knowledge.net/blog/2006/09/16/analyzing-20000-my space-passwords/index.html

--
"I'd rather be a lightning rod than a seismometer." -Ken Kesey
MirrorDot shows the graphs... by wo1verin3 · 2006-09-17 01:46 · Score: 3, Informative

http://www.mirrordot.org/stories/65dbc3fb38c8508be da018cb179a7607/index.html
Re:Flawed by tomhudson · 2006-09-17 02:06 · Score: 2, Informative

"Now, I am changing my password to cookie321, no one will see that coming."
No, no - you have to change it to "wookie321". The glove won't fit, and Endor something or other ...
Seriously, who even cares about the passwords to myspace. The "numeric strength" so-called "analysis" was screwed up. Since myspace requires a number in the password, a lot of people put their name and a digit or two after it as their account password. They also sometimes screw up their email address info, which is how you can end up suddenly "p0wning" someone else's myspace account (and how the #@%^$ am I supposed to contact them and tell them - "Hey, you have a typo in your email address - I'm getting all these stupid "'I heart cats' would like to be added as one of your friends" messages ...
Yes, its a valid account. but since they changed their email info (must be one letter off from mine or something) they have no way of changing it back ... and I don't know what their email address is.
strong passwords? by nephridium · 2006-09-17 02:19 · Score: 4, Informative

Most common passwords used: 13 - cookie123 12 - iloveyou 12 - password 11 - abc123 11 - fuckyou 11 - miss4you 9 - password19 9 - clumsy 8 - sassy 8 - summer06 8 - pablobob 8 - boobie 8 - fuckyou1 8 - iloveyou1 8 - tink69 8 - password1 7 - gospel 7 - terrete 7 - monster7 7 - marlboro1 7 - bitch1 7 - flower 7 - space Summary: While the passwords weren't the best, they weren't exactly terrible. [...]
According to TFA it seems most passwords used on myspace are made up of dictionary words (mostly lower case) and a numeric suffix (usually <4 digits). Imho such a password does look horrible, especially after seeing how important some of the myspace pages seem to be for certain people.

--

And when you gaze long enough into the code, the code will also gaze into you.
Re:I have to agree... by devilspgd · 2006-09-17 07:06 · Score: 2, Informative

It wouldn't do a ton of good since your average phisher has access to a ton of zombies they can verify a password list without triggering any IP:failedlookup ratio and banning themselves from the site.

--
Give a man a fish, he'll eat for a day, but teach a man to phish...