News Biggest password database posted in history spills 10 billion passwords — RockYou2024 is a massive compilation of known passwords

[Admin]

The RockYou2024 leak compiles 9,948,575,739 unique passwords in one place.

Biggest password database posted in history spills 10 billion passwords — RockYou2024 is a massive compilation of known passwords : Read more

 

[in_the_loop]

10 billion passwords...
Wonder if they count unique passwords or if this is just all the accounts passwords that may be duplicated all over the place which is a big problem.
One person may use a lot accounts for different sites and if he uses the same password all over (Something that the lazy person may do) then it will mean that there are loads of duplicates for these 10 billion passwords.
In addition to that all the simple guessable "12345678","qwertyuiop" and "password123" and the likes to take into account of the seriousness of this....

 

[Alvar "Miles" Udell]

I'm not surprised this wasn't mentioned, but Edge does check all stored passwords to see if they have been involved in breaches, as does Chrome, and Firefox, so most of the passwords involved, the older ones, have likely been changed already.

 

[brandonjclark]

I'm not surprised this wasn't mentioned, but Edge does check all stored passwords to see if they have been involved in breaches, as does Chrome, and Firefox, so most of the passwords involved, the older ones, have likely been changed already.

IF (and this is IF I'm still right) you haven't disabled that "feature" of Microsoft knowing your password.

 

[TheOtherOne]

"So, between RockYou2021 and RockYou2024, only about 1.5 billion more passwords were added to the list."

Phew, nothing to worry here. Tis just a scratch!

 

[lichtbringer]

what they do with all theses hashes?
Today we store passwords hashed / and salted.
They intend to waste money on decrypting hashes ?
Besides that if 2fa is used the whole thing renders useless.
Rather spend money cleaning earth

 

[Vanderlindemedia]

For hackers a good password list is mandatory. I know because at least 18 years ago i used to hack myself. Many people where not aware of the weak encryption, websites or dangers it had in regards of passwords, and many folks used one password for lots of things. Even mail, with zero 2 step auth and such.

 

[Alvar "Miles" Udell]

IF (and this is IF I'm still right) you haven't disabled that "feature" of Microsoft knowing your password.

Nope, I use Microsoft's password manager for my passwords and Microsoft Authenticator for my 2FA codes.