Yesterday we mentioned to leak 167 million LinkedIn accounts and passwords to Dark Web.
The leaked passwords were hashed with SHA1 algorithm, a strong algorithm encryptionς δεδομένων, αλλά αν κάποιος διαθέτει αρκετό χρόνο και πconditions it can break.
Note that at the time of hack (2012) LinkedIn did not have salted passwords, which means that there were no random bits in the encrypted data to make it harder to break.
LeakedSource, a website that publishes leaks from data breaches, appears to have already broken most of these passwords. So he published Top 49 most used social network passwords.
It should be noted that in 2012, the social network had asked all users to change their passwords, but publicly acknowledged that "only" 6,5 million accounts had been affected.
See Top Passwords:
Position | Password | Frequency |
---|---|---|
1 | 123456 | 753,305 |
2 | 172,523 | |
3 | Password | 144,458 |
4 | 123456789 | 94,314 |
5 | 12345678 | 63,769 |
6 | 111111 | 57,210 |
7 | 1234567 | 49,652 |
8 | sunshine | 39,118 |
9 | QWERTY | 37,538 |
10 | 654321 | 33,854 |
11 | 000000 | 32,490 |
12 | password1 | 30,981 |
13 | abc123 | 30,398 |
14 | charlie | 28,049 |
15 | linked | 25,334 |
16 | maggie | 23,892 |
17 | michael | 23,075 |
18 | 666666 | 22,888 |
19 | princess | 22,122 |
20 | 123123 | 21,826 |
21 | I love you | 20,251 |
22 | 1234567890 | 19,575 |
23 | Linkedin1 | 19,441 |
24 | daniel | 19,184 |
25 | bailey | 18,805 |
26 | welcome | 18,504 |
27 | buster | 18,395 |
28 | Passw0rd | 18,208 |
29 | baseball | 17,858 |
30 | shadow | 17,781 |
31 | 121212 | 17,134 |
32 | hannah | 17,040 |
33 | monkey | 16,958 |
34 | Thomas | 16,789 |
35 | summer | 16,652 |
36 | George | 16,620 |
37 | harley | 16,275 |
38 | 222222 | 16,165 |
39 | jessica | 16,088 |
40 | GINGER | 16,040 |
41 | michelle | 16,024 |
42 | abcdef | 15,938 |
43 | sophie | 15,884 |
44 | Jordan | 15,839 |
45 | freedom | 15,793 |
46 | 555555 | 15,664 |
47 | tigger | 15,658 |
48 | joshua | 15,628 |
49 | pepper | 15,610 |