Security News > 2023 > August > Four common password mistakes hackers love to exploit
Any clues as to what makes up the structure of a password is very helpful to hackers.
We'll walk through how hackers take advantage of four of the most common password mistakes users make, as well as ways to strengthen your Active Directory against these risks.
They can exploit common base terms through dictionary attacks, where a pre-defined list of weak base terms and their common modifications are used to guess passwords or decryption keys.
An organization might have a password manager in place, requiring the end user to only remember one very strong password.
First, an effective password policy that ensures users' passwords are strong in the first place mitigates against dictionary and brute force attacks that prey on common base terms, short password length, and keyboard walk patterns.
Specops Password Policy comes with a Breached Password Protection feature which checks your Active Directory against a list of over 3 billion unique compromised passwords.
News URL
Related news
- Iranian hackers now exploit Windows flaw to elevate privileges (source)
- Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials (source)
- Hackers exploit Roundcube webmail flaw to steal email, credentials (source)
- Hackers exploit 52 zero-days on the first day of Pwn2Own Ireland (source)
- Lazarus hackers used fake DeFi game to exploit Google Chrome zero-day (source)
- Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails (source)
- High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables (source)
- Chinese hackers exploit Fortinet VPN zero-day to steal credentials (source)
- Chinese Hackers Exploit T-Mobile and Other U.S. Telecoms in Broader Espionage Campaign (source)