{"id":48210,"date":"2012-12-06T11:47:16","date_gmt":"2012-12-06T09:47:16","guid":{"rendered":"http:\/\/mygaming.co.za\/news\/?p=48210"},"modified":"2012-12-06T11:50:56","modified_gmt":"2012-12-06T09:50:56","slug":"monster-25-gpu-cluster-crunches-billions-of-passwords-per-second","status":"publish","type":"post","link":"https:\/\/mygaming.co.za\/news\/business\/48210-monster-25-gpu-cluster-crunches-billions-of-passwords-per-second","title":{"rendered":"Monster 25 GPU cluster crunches billions of passwords per second"},"content":{"rendered":"<p>It might be time to reconsider that &#8220;password&#8221; password (again) &#8211; a new machine built by security experts can break it in nanoseconds. Not that anybody should be using &#8220;password&#8221; as a password, but statistically, <a href=\"http:\/\/www.prweb.com\/releases\/2012\/10\/prweb10046001.htm\" target=\"_blank\">people still do<\/a>.<\/p>\n<p>Anyway, Jeremi Gosney&#8217;s monster password-cracking rig is powered by 25 AMD Radeon GPUs distributed between five 4U servers running the Hashcat password cracking app, and is capable of parsing 348 billion <a href=\"http:\/\/en.wikipedia.org\/wiki\/NTLM\" target=\"_blank\">NTLM<\/a> password hashes per second. Effectively, this means an 8-character password can be broken in about 5.5 hours. Passwords using the mostly deprecated Windows <a href=\"http:\/\/en.wikipedia.org\/wiki\/LM_hash\" target=\"_blank\">LM hash<\/a> encryption can be cracked in just 6 minutes.<\/p>\n<div id=\"attachment_48217\" style=\"width: 310px\" class=\"wp-caption aligncenter\"><a href=\"http:\/\/mygaming.co.za\/news\/wp-content\/uploads\/2012\/12\/password-cracking-machine.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-48217\" class=\"size-full wp-image-48217\" title=\"password cracking machine\" src=\"http:\/\/mygaming.co.za\/news\/wp-content\/uploads\/2012\/12\/password-cracking-machine.jpg\" alt=\"password cracking machine\" width=\"300\" height=\"225\" srcset=\"https:\/\/mygaming.co.za\/news\/wp-content\/uploads\/2012\/12\/password-cracking-machine.jpg 300w, https:\/\/mygaming.co.za\/news\/wp-content\/uploads\/2012\/12\/password-cracking-machine-250x187.jpg 250w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><p id=\"caption-attachment-48217\" class=\"wp-caption-text\">All your password are belong to us.<\/p><\/div>\n<p>It&#8217;s probably worth noting that a system like this is built to break entire password databases in an offline scenario where there&#8217;s no set number of attempts, and not your OkCupid account login. Unless, of course, OkCupid&#8217;s password database was stolen, in which case those photos of your junk you sent to everybody would be totally compromised.<\/p>\n<h5>Source: <a href=\"http:\/\/securityledger.com\/new-25-gpu-monster-devours-passwords-in-seconds\/\" target=\"_blank\">Security Ledger<\/a> (via <a href=\"http:\/\/boingboing.net\/2012\/12\/05\/cracking-passwords-with-25-gpu.html\" target=\"_blank\">Boing Boing<\/a>)<\/h5>\n<h3 class=\"my-4\">Related articles:<\/h3>\n<p><strong><a href=\"http:\/\/mygaming.co.za\/news\/news\/46452-worst-gaming-passwords-of-2012.html\">Worst gaming passwords of 2012<\/a><\/strong><\/p>\n<p><strong><a href=\"http:\/\/mygaming.co.za\/news\/news\/47513-hacker-steals-mmo-source-code-to-launch-own-game.html\">Hacker steals MMO source code to launch own game<\/a><\/strong><\/p>\n<p><strong><a href=\"http:\/\/mygaming.co.za\/news\/news\/46116-steam-is-vulnerable-to-hackers.html\">Steam is vulnerable to hackers<\/a><\/strong><\/p>\n<p><strong><a href=\"http:\/\/mygaming.co.za\/news\/pc\/30893-beware-of-saving-passwords-in-your-web-browser.html\">Beware of saving passwords in your web browser<\/a><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Your password isn&#8217;t safe<\/p>\n","protected":false},"author":159,"featured_media":46492,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_sma_x_autopost_status":"idle","_sma_x_autopost_error":"","_sma_x_post_id":"","_sma_x_attempts":0,"footnotes":""},"categories":[2],"tags":[31,6532,7404,8049,1461],"class_list":["post-48210","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-business","tag-active","tag-hackers","tag-passwords","tag-photos-of-your-junk","tag-security"],"_links":{"self":[{"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/posts\/48210","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/users\/159"}],"replies":[{"embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/comments?post=48210"}],"version-history":[{"count":1,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/posts\/48210\/revisions"}],"predecessor-version":[{"id":48223,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/posts\/48210\/revisions\/48223"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/media\/46492"}],"wp:attachment":[{"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/media?parent=48210"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/categories?post=48210"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mygaming.co.za\/news\/wp-json\/wp\/v2\/tags?post=48210"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}