How LinkedIn's 2012 Breach Exposed the Dangers of Unsalted Password Hashes
By
iStuff
Fresh out the oven, still warm. Top of the tray.
Summary
This article examines the 2012 LinkedIn breach where attackers cracked millions of passwords using fast, unsalted hashes like MD5 and SHA-1. It explains how dictionary attacks succeeded due to weak password storage practices, and contrasts this with modern, more secure approaches using salts and purpose-built algorithms like bcrypt. The article serves as a cautionary tale about why these security mistakes still matter today.
Key quotes
· 3 pulledLinkedIn's 2012 breach exposed millions of hashed passwords.
Unsalted hashes made password cracking fast and efficient.
Dictionary attacks succeeded because many users picked predictable passwords.
You might also wanna read
Security Researchers Find Widespread Exposure of Sensitive Passwords and Credentials Online
The article discusses the widespread problem of users exposing sensitive credentials like passwords, secrets, and keys on public websites an
labs.watchtowr.com·6mo ago
Unsecured Database Exposes 149 Million Login Credentials Without Protection
Security researcher Jeremiah Fowler discovered an unsecured database containing 149 million unique login credentials including emails, usern
techrepublic.com·4mo ago