Results 1 to 2 of 2
  1. #1
    MasterTee's Avatar
    Join Date
    Sep 2015
    Post Thanks / Like

    11 Million Ashley Madison Passwords Cracked In Just 10 Days

    Last month, when hackers leaked nearly 100 gigabytes of sensitive data belonging to the popular online casual sex and marriage affair website 'Ashley Madison', there was at least one thing in favor of 37 Million cheaters that their Passwords were encrypted.

    But, the never ending saga of Ashley Madison hack could now definitely hit the cheaters hard, because a group of crazy Password Cracking Group, which calls itself CynoSure Prime, has cracked more than 11 Million user passwords just in the past 10 days, not years.

    Yes, the hashed passwords that were previously thought to be cryptographically protected using Bcrypt, have now been cracked successfully.

    Bcrypt is a cryptographic algorithm that makes the hashing process so slow that it would literally take centuries to brute-force all of the Ashley Madison account passwords.

    How do they Crack Passwords?

    The Password cracking team identified a weakness after reviewing the leaked data, which included users' hashed passwords, executive e-mails and website source code.

    During website's source code audit and analysis, the team found that some of the login tokens used by the website were protected using MD5 (a weak and fast hashing algorithm).

    So, instead of cracking the slow Bcrypt algorithm, they simply brute-forced the MD5 tokens of respective accounts, which allowed the Password Cracking team to effectively obtain 11.2 Million passwords in plaintext format.

    However, this approach doesn't allow to crack all 37 million Ashley Madison passwords, because the notoriously weak MD5 hashing algorithm was only introduced on June 2012.

    Therefore, researchers estimated that nearly 15 million Ashley Madison accounts could be affected, out of which 11.4 Million are already cracked by the teamís password-cracking software.

    Change Your Ashley Madison Password Now!

    Researchers also claimed that they hope to crack the remaining 4 Million improperly secured account passwords within next 7-8 days.

    Ashley Madison users are advised to change their account passwords if they haven't already changed them.

    Moreover, the users need to follow some standard prevention practice, such as:

    • Do not use the same login credentials on other websites, like eBay or PayPal, as hackers could break into that account using the cracked password and the already dumped email addresses.
    • Use strong and different passwords on different sites.
    • Use a good and reputed "Password Manager" to manage all your passwords.

  2. #2
    The Pirate TizPirate's Avatar
    Join Date
    May 2012
    The Deep Wťb
    Post Thanks / Like
    Well that's a good record lol. I wonder how many problems this created between parents. lol
    Pm me for Skype/Gmail/ICQ/Yahoo.

Similar Threads

  1. Replies: 0
    Last Post: 10-09-2015, 10:46 PM
  2. Replies: 0
    Last Post: 10-09-2015, 04:21 PM
  3. Why you shouldn't download the Ashley Madison database
    By MaLiFiCentTIZ in forum BitTorrent News
    Replies: 0
    Last Post: 24-08-2015, 03:04 AM
  4. BSP: Passwords
    By Tactical Fury in forum BitTorrent News
    Replies: 0
    Last Post: 10-01-2014, 03:22 PM
  5. TL invite.. (some cracked to me and made my acc ban)
    By yagil1994 in forum Tracker Requests
    Replies: 1
    Last Post: 08-07-2012, 11:59 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts