>
Dropping numbers, symbols, and letters into your passwords can help convince you that your online accounts are safe.
Still, cybersecurity experts have warned that a six-character password that contains all of these attributes can be instantly cracked by hackers.
New research Hive systems shows that hackers can crack your password in seconds – even if it is more than 10 characters long.
This is up to eight times faster than last year, which the researchers attribute to technological progress.
“The time has finally come when passwords are no longer secure on their own,” said Alex Nette, CEO and co-founder of Hive Systems.
Dropping numbers, symbols, and letters into your passwords can help convince you that your online accounts are safe. Yet cybersecurity experts have warned that a six-character password containing all of these attributes can be instantly cracked by hackers (stock image)
“With the low-threshold use of artificial intelligence tools and hardware, hackers have never had easier access to our personal data. Without extra protection, I don’t think we can consider our data safe.’
Research has shown that number-based passwords are the most vulnerable and can be immediately cracked by hackers if they are four to eleven characters long.
A 12-digit passcode would also take hackers less than a second to crack, while an 18-digit passcode would take just under a week to crack.
Lowercase passwords were slightly more secure, but not quite, and passwords of four to eight characters were also cracked instantly.
And while an 11-letter password took just 30 minutes to crack, adding another seven lowercase letters would make it more than 480,000 years.
The most secure passwords were those with a combination of numbers, symbols and different capital letters.
These can be cracked instantly if they are four to seven characters long, but 12-character passwords would take 226 years to crack.
If you added six extra characters to the same password, it would take hackers a staggering 26 trillion years to break in, according to Hive Systems.
Hackers can now crack complex passwords eight times faster than last year, findings show
Global Cybersecurity Advisor at ESET, Jake Moore added that using different passwords for each site is another way to protect yourself from cybercriminals.
He said: “Cybercriminals roam the dark web looking for these lists of hacked usernames and passwords in the hope that they can hack into other accounts belonging to the same username with the same matching password.
‘That’s why it’s very important to never use the same password twice.
“Furthermore, if people use the same password for everything for years or with a simple change like the number at the end, they are essentially handing over the keys to their precious data and even financial accounts to hackers.”
Hackers crack passwords using brute force attacks, which are trial and error approaches to test potential usernames and passwords.
While this sounds like a tireless process, graphics cards can speed it up thanks to popular applications like Hashcat.
Hive Systems advocates that formal identity confirmation should be more widely used online to protect accounts and personal information.
They also recommend using password managers, but even these are reportedly becoming less secure as technology advances.
Last year it took up to 3,000 years to crack a 12-character password created by a reputable password manager, but this has now been reduced to 226 years.
“Strong and unique passwords just aren’t very strong anymore,” said Corey Neskey, VP of Quantitative Risk at Hive Systems.
“The combination of a password manager that generates long, complex passwords and using multi-factor authentication are the best ways to reduce your risk.”
Mr Moore also added: ‘Passwords need to be long and unique, but they need to be linked to multi-factor authentication, meaning if a hacker were to brute force your password or cheat it out of you, they would still need your device would have, a time code or your biometric data to access the account.
“Using a password manager means you don’t have to remember the ridiculous amount of passwords we all need to have a presence on the internet. You no longer have to use the same password everywhere or use memorable facts like your dog’s name or your child’s birthday.’