Microsoft found 44 million accounts using breached passwords
Microsoft has discovered 44 million user accounts are using usernames and passwords that have been leaked through security breaches.
As ZDNet reports, the vulnerable account logins were discovered when Microsoft's threat research team carried out a scan of all Microsoft accounts between January and March this year. The accounts were compared to a database of over three billion sets of leaked credentials and resulted in 44 million matches.
These accounts were spread between regular user accounts used by consumers (Microsoft Services Accounts) and enterprise accounts in the form of Microsoft Azure AD logins. In response, Microsoft explained, "For the leaked credentials for which we found a match, we force a password reset. No additional action is required on the consumer side ... On the enterprise side, Microsoft will elevate the user risk and alert the administrator so that a credential reset can be enforced."
Microsoft goes on to recommend that, "Given the frequency of passwords being reused by multiple individuals, it is critical to back your password with some form of strong credential. Multi-Factor Authentication (MFA) is an important security mechanism that can dramatically improve your security posture. Our numbers show that 99.9% of identity attacks have been thwarted by turning on MFA."
SEE ALSO:Absolutely humongous data breach exposes more than a billion recordsPicking a password is always a trade-off between what's memorable and what's strong, which is why using a password manager makes so much sense. But we have another problem: security breaches expose passwords and they shouldn't be used by anyone.
While Microsoft did the right thing resetting the passwords on these account, it currently can't stop a user selecting a new password that's also been exposed as part of a past security breach. A positive next move would be to perform a check when a password is entered to see if it appears on a breach list, and if it is, to reject it and request the user pick something else.
-
I used the Pixel 9 Pro XL in the shower — does the screen work when wet as claimed?Six shirts worn by Messi at World Cup sell for $7.8 mnHaney dominates Prograis to grab WBC titleResearchers put 3D glasses on cuttlefish to study their eyes12 Sculptures Made From Recycled MaterialsChina's Korea envoy accuses US of 'using' tensionsIt's Barbie's World in These 21 Perfectly Pink Places 促进优质医疗资源下沉 推动医疗资源合理配置Apple Intelligence is now a little easier to get outside the U.S.Pakistan to host Davis Cup ties
下一篇:Bernie Sanders’ DNC speech sounded like everyone else’s. That’s astonishing.
- ·Military prosecutors indict intel official over leaking 'black agent' info
- ·The Jellyfish Engineer
- ·The one wild truth revealed by the Senate’s mostly useless SCOTUS ethics hearing.
- ·How NASA kept its Mars rovers alive long past their expiration dates
- ·Flying spaghetti monster and unworldly life filmed in deep sea footage
- ·Pakistan to host Davis Cup ties
- ·Plane lands safely after bird strike at Incheon Airport
- ·Apple AirPods Pro Black Friday deal: $80 off at Walmart
- ·古物:回望时间的印记
- ·Fish blood could hold the answer to safer de
- ·PSG look for win over Dortmund
- ·N. Korea celebrates completion of building more new homes in Pyongyang
- ·Travel Back in Time and Uncover Old
- ·N. Korean FM vows stronger ties with China in meeting with new envoy
- · 促进优质医疗资源下沉 推动医疗资源合理配置
- ·This ancient fish
- ·The Analog Embrace: How Some Experiences Are Surviving the Digital Age
- ·Rare Brain
- ·Mars’s mascara
- ·A Journey Into the Mind of Stephen King
- ·抖音超600万次传播量!广东省农事运动会乡村直播大赛火出圈
- ·S. Korea to launch two more military spy satellites this year
- ·9 Planetariums to Get Lost in the Cosmos
- ·Article Test
- ·Unionized hospital workers pull out from strike
- ·Jack Teixeira: Why the Pentagon documents leaker had access to so much classified information
- ·A Global Tour of Bakeries With Fascinating Histories
- ·Belarusian Embassy marks Orthodox Christmas
- ·Fox and Dominion settlement: It's actually fine there's no trial.
- ·Nerf’s newest blaster shoots spinning balls for dramatic curves
- ·North Korea says it conducted important test to develop multiple warhead missile
- ·OpenAI GPT Store users break rules with 'girlfriend' bots
- ·GoPro Hero 12 Black deal: Get the GoPro Hero 12 Black bundle for $349.99
- ·Scientists made an environmentally friendly gin from peas. Yes, it will still get you drunk.
- ·高燃!哨响表停赛不止,2024广东“村BA”开赛在即,一分钟带你重温高光瞬间。
- ·Halep career could be over if ban appeal fails