Hookers.nl breach: cracking 57% of the passwords in three days

The weakness

The hack

The impact

The password hashes

Results

  • Nearly a hundred users use a 10 digit password that matches the syntax of a Dutch cell phone number.
  • Cracked accounts include— among others — users from domains of Dutch governmental intuitions like the department of defense, foreign affairs and law enforcement.
  • Analysis of IP addresses shows that many of those users visit Hookers.nl from work.

Final words

data of various hacked vBulletin forums available for download

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store