Viewing a single comment thread. View all comments

Wingless wrote (edited )

I assume they add passwords to the next list...

The key thing for cracking passwords is, at some point it is way faster to search every password anybody has ever thought of, than to search every password anyone possibly could think of.

Yes, an honest site would just let you look up in the index starting with any string of letters, so you didn't have to give away your password in the process. Therefore, this is not an honest site. Q.E.D.

Faster proof: It's a site, from a company, on a computer. Therefore it is spying on you and selling your information. Q.E.D.

2

Wahaha wrote

You can only make use of this if you already have the data. At that point it matters little whether they have to brute force the password based on every possibility or based on a huge list. The password is going to get cracked.

How does a 200GB password list come in handy when trying to guess the password of some online account that locks you out after three failed attempts? It doesn't.

1