Now Law Enforcement Can Hack 77% Of ‘Three Random Word’ Passwords
As World Password Day 2025 approaches, security experts are urging individuals and businesses to take extra precautions to protect their online identities. The latest research has revealed that law enforcement agencies can crack up to 77.5% of passwords created using the traditional "three random word" method.
The Three Random Word Approach: Not as Secure as You Think
For years, security experts have advised individuals to create strong passwords by combining three random words. The idea was that this approach would provide a good balance between memorability and security. However, new research has revealed that this method is not as secure as previously thought.
A study published in the Optimizing Password Cracking for Digital Investigations report found that law enforcement agencies can use specialized software to crack passwords created using this method. The researchers used an optimized rule set that reduced computational iterations by approximately 40%, allowing them to significantly improve their password-cracking speed.
The Consequences of Using Three Random Word Passwords
Using three random word passwords may provide some level of security, but it's not enough to protect against determined hackers. The use of common words and phrases in passwords can make them vulnerable to cracking, even with the use of an optimized rule set.
The Irony: Law Enforcement Can Crack Three Random Word Passwords Quicker Than Ever
Given that law enforcement agencies are often advised to use three random word passwords, it's ironic that they can now crack these passwords with ease using specialized software. This highlights the importance of choosing stronger password methods to protect against determined hackers.
A New Approach: Passphrases and Passkeys
Instead of relying on three random word passwords, security experts recommend using passphrases or passkeys. These are longer, more complex combinations of characters that can be easily generated by password managers.
Passphrases are a good option for individuals who want to create strong passwords without having to remember them. Most password managers can generate these for you, making it easy to create and store strong passwords.
The Benefits of Passkeys
Passkeys offer several benefits over traditional passwords. They use biometric authentication to log in, making them more secure than traditional passwords. They also eliminate the need to remember complex passwords, reducing the risk of password-related security breaches.
Many companies and organizations are now recommending passkeys as a safer alternative to traditional passwords. This includes Mastercard, which has recommended setting up payment passkeys to strengthen your online security posture.
Advice Ahead of World Password Day
As World Password Day 2025 approaches, it's essential to take extra precautions to protect your online identity. Here are some tips to keep in mind:
Use strong passwords: Choose unique, complex passwords for each account. Avoid using common words or phrases.
Enable two-factor authentication: This adds an extra layer of security to your accounts by requiring a second form of verification beyond just your password.
Use a password manager: These tools can generate strong passwords, store them securely, and deploy them as required. They're the best way to create strong passwords without having to remember them.
Remember: Security is Everyone's Responsibility
As security experts, we must all take responsibility for protecting our online identities. By following these simple tips, you can significantly reduce the risk of password-related security breaches and protect your sensitive information.