.

Healthy Passwords

.

.

Bloggtoppen.se 90000 Passwords Revealed

Date: 2011-10-26 07:09:44

Sweden IconPopular Swedish blogging site Bloggtoppen.se suffered a security breach compromising 90000 user passwords. The attackers allegedly publicly announced the password file details using a compromised Twitter account William Petzall, a former scandalized politician.

The passwords were encrypted using an unsalted MD5 hash. (For more on hashes see See what are hashes and rainbow tables.) This means that users who had a strong password are less vulnerable than users using weak passwords. Strong passwords have mixed case, special characters, 10+ character length, no dictionary words. (See qualities of a strong password) According to analysis by dlitz.net, the most common password from the file was "super123".

#1  (995): super123
#2  (141): hejsan
#3  (118): 123456
#4  (111):
#5  (102): hejhej
#6  (96) : bajskorv
#7  (93) : sommar
#8  (69) : hemligt
#10 (60) : blomma
#11 (54) : dinmamma
#12 (52) : cocacola
#13 (51) : stockholm
#14 (50) : johanna
#15 (45) : kalleanka
#16 (44) : sverige
#17 (43) : mammapappa
#18 (43) : amanda
#19 (43) : losenord
#20 (43) : apelsin
#21 (41) : qwerty
#22 (41) : sommarlov
#23 (40) : hundar
#24 (39) : smulan
#25 (38) : iloveyou
#26 (38) : lösenord
#27 (38) : password
#28 (37) : abc123
#29 (35) : internet
#30 (35) : fotboll
**Analysis credit: https://www.dlitz.net/blog/2011/10/most-common-losenord/

According to a notice at the site:

Blog Top is closed until further notice due to system maintenance alleged hacking.
Unknown perpetrators have come across the user database with user names, email addresses
 and hashed passwords, which means that if you, the user has used the same login 
information for other services on the web so likely these accounts to be hijacked. We 
recommend all users to immediately change passwords on all accounts use the same login 
information here.

Further information will come when we have had time to investigate and resolve the 
interference.

If you ever had an account at Bloggtoppen.se, and reuse passwords at multiple sites, start changing passwords. Always start with your email password and work back from there. Follow Healthy Password rules when creating your new passwords.

Category: Breach

Subcategory: Website

blog comments powered by Disqus
McAfee SECURE sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams

 Subscribe in a reader

.

Leaf

Leaf

Home | Live CD Listing | Password Worksheet | Third Party Ratings | Purchase | Errata | Contact | News | News Archive | Legal

Copyright © 2011, Sustainable Alternatives, LLC | Ligonier, PA 15658 | 724-238-9560 | All Rights Reserved.

 Sustainable Alternatives, LLC BBB Business Review
Leaf

.

Leaf