The scraped data of 2.6 million DuoLingo users was leaked on a hacking forum, allowing threat actors to conduct targeted phishing attacks using the exposed information.

  • qaz@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    ·
    1 year ago

    That’s why I let Bitwarden generate a random 64 character password with special characters and numbers

    • fraydabson
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      I also take advantage of Bitwarden’s ‘passphrase’ generation as I understand that pass phrases can be even more secure.

      If the password requirements allow longer passwords I typicallyuse a passphrase generated by bitwarden, shorter ones I use generated passwords.

      • SmoothLiquidation@lemmy.world
        link
        fedilink
        English
        arrow-up
        5
        ·
        1 year ago

        The only thing that affects how long it takes to brute force a password is length and entropy (the different types of characters used). Passphrase is designed to make it easier for a human to remember, so if you are using a PM to remember it anyway, a 64 character random password is going to be better than a 64 character passphrase.

        I usually use the password generator in the 32 character range with all of the symbols, numbers, and characters included, since it seems like a lot of places don’t like longer passwords.

        • fraydabson
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          wow thanks, I always remembering hearing people talk about passphrases being better, and saw bitwarden add a feature to generate them, I just went with it.

          But given I have no interest in remembering these pass phrases, it would make sense to use generated passwords vs passphrases as you said. Good thing my effort to transition to pass phrases was recent and wasn’t done too much yet.

          • Borkingheck@lemmy.world
            link
            fedilink
            English
            arrow-up
            3
            ·
            1 year ago

            The rise of a pass phrase is more to do with mitigating the human risk in security which is people using memorable passwords. So a passphrase is typically easier to remember. That’s the theory anyway.