“We analyse the passwords that are being used most commonly”. Even though this should be common knowledge, it seems that many folks are in the dark about this.
Advertisement
Microsoft are compiling a list of these passwords and will continue to update, them you can find out more details at the link below.
Further said that it has invalidated passwords of all its LinkedIn user accounts created before the 2012 breach which hadn’t changed their passwords and is using automated tools to check and block any suspicious activities which may occur on LinkedIn accounts.
Sorting through the list of stolen passwords we’ve identified the most common, therefore worst passwords being used.
“What we do with the data is prevent you from having a password anywhere near the current attack list, so those attacks won’t work”, Alex Weinart writes. We use this data to maintain a dynamically updated banned password list.
The feature is now available on Microsoft Account Service, but will soon be available to Azure AD customers. Microsoft says that it will roll it out across all 10 million+ tenants of its cloud platform’s directory and identity management service. Microsoft has shown it in action during a password reset, but, as Weinert has explained in a previous blog post, it also kicks in when a compromised password is detected. This only happens to that login session, so if you try to login from your PC you should have no issues accessing your account.
But the system will allow you to log in if you are using your own device and on an internet network you have used before.
So next time you create an account and are asked to enter your password, keep these tips in mind.
Microsoft hopes these precautions will force people to adopt strong, complex passwords. At the start of the month, Microsoft revealed that it saw over ten million cyber-attacks per day on its Microsoft Account and Azure Active Directory identity systems.
Advertisement
According to the feature written by Manu Kashyap, only three in five people use different passwords for different accounts due to the challenge of having to remember multiple passwords for various accounts.
