Researcher finds hackers also don't choose strong passwords

A quick look found that most hackers don't use strong passwords when they are running around conducting malicious activities.

Published Sat, Jun 7 2014 4:20 AM CDT   |   Updated Tue, Nov 3 2020 12:16 PM CST

Security experts continually warn users to choose strong passwords, but it appears hackers don't bother to use complicated passwords, either. Of the 2,000 passwords recently analyzed by security firm Avast, used by hackers to illegally access information, many of the passwords were saved in plain text. Many hackers used the terms "hack," "pass," "root," or "hax."

Researcher finds hackers also don't choose strong passwords |

"When a hacker finds vulnerability in a website, [they]use a special file called a 'shell' to gain control over the website," said Antonin Hyza, AVAST virus lab analyst, in a statement to SCMagazine. "Avast detects shell as malware to help administrators identify infected websites. Those shells are usually protected by passwords so no other hacker could use it."

Just 10 percent of the passwords analyzed by Hyza are considered to be strong, with him recommending a password that is at least 10 characters long. Cybersecurity experts recommend how to select stronger passwords, with free online websites also testing how strong a password is.

Follow on Google News

An experienced tech journalist and marketing specialist, Michael joins TweakTown looking to cover everything from consumer electronics to enterprise cloud technology. A former Staff Writer at DailyTech, Michael is now the West Coast News Editor and will contribute news stories on a daily basis. In addition to contributing here, Michael also runs his own tech blog,, while he looks to remain busy in the tech world.

Newsletter Subscription

Related Tags

Newsletter Subscription
Latest News
View More News
Latest Reviews
View More Reviews
Latest Articles
View More Articles