MySpace Users Have Stronger Passwords Than Employees

Posted by Zonk on Thursday December 14, 2006 @08:36AM from the hardly-surprising dept.

Ant writes "A Wired News column reports on Bruce Schneier's analysis of data from a successful phishing attack on MySpace, and compares the captured user-passwords to an earlier data-set from a corporation. He concludes that MySpace users are better at coming up with good passwords than corporate drones." From the article: "We used to quip that 'password' is the most common password. Now it's 'password1.' Who said users haven't learned anything about security? But seriously, passwords are getting better. I'm impressed that less than 4 percent were dictionary words and that the great majority were at least alphanumeric. Writing in 1989, Daniel Klein was able to crack (.gz) 24 percent of his sample passwords with a small dictionary of just 63,000 words, and found that the average password was 6.4 characters long."

3 of 263 comments (clear)

Min score:

Reason:

Sort:

Okay... by eln · 2006-12-14 08:38 · Score: 5, Insightful

So MySpace users are smart enough to pick somewhat secure passwords, but still dumb enough to fall for basic phishing attacks.

It doesn't matter how strong their password is if they are still giving it to whoever asks for it.
Stronger Passwords by Joe+The+Dragon · 2006-12-14 08:42 · Score: 5, Insightful

It easy to have Strong Passwords when you don't need to change them all the time and can't reuse parts of the old password in the new password.
Re:The Lesson? by lpcustom · 2006-12-14 08:53 · Score: 5, Insightful

Yeah I agree. The time limits on passwords cause most people to just come up with something easier to remember. Why should I have to change my password every 30 days if it's something like Mxo2s0LLn234aAZSQ If I can't even get it right I'm sure no one else is going to guess it. There shouldn't be a need to change it.

--
Beer! It's what's for breakfast!