Turns Out Ashley Madison’s Uncrackable Passwords Are Actually Very Crackable

Turns Out Ashley Madison’s Uncrackable Passwords Are Actually Very Crackable
To sign up for our daily newsletter covering the latest news, features and reviews, head HERE. For a running feed of all our stories, follow us on Twitter HERE. Or you can bookmark the Gizmodo Australia homepage to visit whenever you need a news fix.

It was little solace to victims of the Ashley Madison hack that the company had kept their passwords extra secure. Some even said the hashing algorithm was bulletproof. But — oops! — it turns out Ashley Madison made a programming error. Hobbyists have now already deciphered over 11 million passwords from the leaked accounts.

A team calling themselves “CynoSure Prime” has figured out a couple of flaws in the hashing algorithm that enabled them to crack millions of passwords in a matter of days. It had previously been believed that the supposedly super secure hashed passwords would take centuries for even the fastest computer to crack.

Now the research team will ultimately be able to decipher some 15 million Ashley Madison passwords. Here’s hoping they don’t release them to the public.

[Ars Technica]