CyberSecurity: Holy Shit! Hashcat tool cracks 55 Character Passwords

Holy shit! That’s exactly I felt when I read about Hashcat tool which is a freely available tool. Also, available in Kali Linux applications set. A fastest & reliable to crack the password up to 55 chars. Tools like this always have two sides:

  1. Cybercriminals to steal the data & use this tool to crack the password.
  2. Another benefit is that Companies can do the stress testing on their user passwords & password policy.

Scared & Still looking for answer? Keep reading…

You might be thinking that All security experts suggest to the normal people to use a strong password but if a tool can crack any password no matter how big it is then how strong password any human being can set & remember that. Does the password has become useless in advance technology? 

Length is still important; but rather than just a combination of words or phrases, it should be a mix of characters, numbers and punctuation symbols & everybody should try to keep password strong & unique to the single application. Not re-using of the password is a good way to keep yourself safe. 

All you can do is to keep password strong enough to make harder for the hackers to crack it. Making their job tough is one way to buy sometime before they hit you.

So, How does HashCat break the password?

Hashcat tool basically needs hashcode to crack the password. Any criminals or penetration tester needs to know hashcode. There are multiple ways of obtaining these hashes, such as .dll injection in Windows systems or capturing the hash in transit. Kali Linux has this tool in their applications. You can explore more on that if you are interested to know.

Is password manager a solution?

I think not a bad idea to start using a password manager like keepass. however, only fear you might have that password manager become a single failure point for all your digital accounts. Some security experts do recommend a password manager software. 

My personal opinion is that we should enable 2FA & biometric authentication in your digital accounts. Like Google authenticator, app-based 2FA etc. Since everything has become crackable, Our objective should be, Let’s make life harder for criminals.

Advertisements


Categories: Credit card security, customer data breach, cyber attack, Cyber Security, follow cybersecurity, password cracker, password security

Tags: , ,

1 reply

Trackbacks

  1. CyberSecurity: Quora hack leaves details of 100 million accounts exposed – Cyber Security: Awareness is the key

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.