Security News > 2022 > March > The top 5 things the 2022 Weak Password Report means for IT security
Specops Software's first annual Weak Password Report has yielded some interesting results that may cause you to rethink the way that your organization manages passwords.
The problem with this however, is that leaked password databases have allowed cyber criminals to create lookup tables that can be used to reveal a password based on its hash, without actually having to crack the password, thereby making password length far less of a problem for cyber criminals.
This idea was reflected in the 2022 Weak Password Report which found that 93% of the passwords that were used in brute force attacks included at least eight characters.
The Weak Password Report found that passwords are often seasonal and that it is also common for passwords to be influenced by pop culture.
The Weak Password Report found that 68% of the passwords used in real attacks included at least two different types of characters.
The 2022 Weak Password Report found that 54% of organizations do not have a tool for managing work passwords.