Hacking passwords easy in most cases, says Deloitte report
Deloitte report also predicts subscription TV will continue
Beacon Staff Reporter
Hacking passwords has gotten simpler with virtualisation software and high-powered graphics processing units.
In a startling revelation, the Deloitte report of Canadian Technology, Media & Telecommunications Predictions has said that over 90 per cent of user-generated passwords are vulnerable to hacking in a matter of seconds.
“Passwords containing at least eight characters, one number, mixed-case letters and non-alphanumeric symbols were once believed to be robust. But these can be easily cracked with the emergence of advance hardware and software,” said Duncan Stewart, Director of Research, Deloitte Canada and co-author of TMT Predictions 2013.
“A machine running readily available virtualisation software and high-powered graphics processing units can crack any eight-character password in about five hours.”
It’s human behaviour and a tendency for password re-use that puts password security at risk. Moving to longer passwords or to truly random passwords is unlikely to work, since people just won’t use them. Multi-factor authentication using tokens, cellphones, credit cards or even biometrics are more likely solutions.
The Deloitte report of 2013 also counters popular opinion that Canadians will “cut-the-cord” on their subscription TV services. Instead, the report states that less than one per cent will end their cable and satellite services.
“There is a lot written about big changes in the way we will watch television, but the reality is quite different,” said Richard Lee, Deloitte Canada’s National Managing Partner for TMT.
“Our research suggests that Canadians who want to watch the three key pillars of TV – reality shows, sports and news - are unlikely to cut the cord. Though 2013 will see very few ‘cord-cutters’, ‘cord-nevers’ will begin to emerge as youngsters establish households without ever paying for traditional pay TV subscriptions.”
The Deloitte report claims that existing broadcastors will continue to deliver the majority of OTT, or “over-the-top”, services as well. OTT refers to the delivery of content and services over an infrastructure that is not under the same administrative control as the content or service provider, as defined by Wikipedia.
The appeal of existing broadcasters and distributors lies in the familiarity of their brands and the fact that popular content is quickly made available after it is originally broadcast. Deloitte estimates that 75 per cent of programs will be watched within a week of initial broadcast.
While 4K televisions – which offer four times the resolution of the current highest standard – are starting to be available, Deloitte predicts that only a very few will be sold in Canada. Most Canadians will not want to pay the hefty price tag, especially as there won’t be any 4K broadcasts this year.
In addition to these top four, the other predictions of the Deloitte report include:
- The PC is not dead. It’s about usage not units – More than 80 per cent of Internet traffic measured in bits will continue to be generated on traditional personal computers (desktops and laptops). And of the total time spent on PCs, tablets and smartphones combined, more than 70 per cent will be using PCs.
- Crowdfunding portals will raise $3-billion globally, a 100 per cent increase over 2011.
- Mobile advertising – a category including tablets, smartphones and feature phones - should grow by 50 per cent to reach $9 billion globally.
- More than 90 per cent of Fortune 500 firms will have selectively or fully implemented an Enterprise Social Networks (ESN) by the end of 2013, a 70 per cent increase over 2011. Of those who register, only a third will read content once a week or more and just 40 per cent will make an ESN post in the average month.
- Very few additional companies will adopt a bring-your-own-computer (BYOC) policy where the employer pays for the PC. At the same time, 50 per cent of Fortune 500 companies will allow employees to bring their own personally-owned and paid for computers.
- The demand for wireless bandwidth continues to grow causing increased spectrum exhaustion, especially in Canada’s urban areas – leading mainly to slower speeds, but sometimes an inability to access networks or dropped calls or data sessions.
These predictions will be showcased in a 14-stop cross-country tour beginning Tuesday. The stops are: Toronto (Jan. 15); Montreal (Jan. 16); Quebec City (Jan. 17); Ottawa (Jan. 18); St. John’s (Jan. 21); Halifax (Jan. 22); Saint John (Jan. 23); Edmonton (Jan.24); Saskatoon (Jan. 25); Vancouver (Jan. 28); Calgary (Jan. 29); Regina (Jan. 30); Winnipeg (Jan. 31); Kitchener (Feb.1).
Visit www.tmtpredictions.ca to register for the event in your area.
Category: Technology
Subscribe
If you enjoyed this article, subscribe to receive more just like it.
Quote: “A machine running readily available virtualisation software and high-powered graphics processing units can crack any eight-character password in about five hours.”
Not in the real world. This is a total non-issue. While there are multi processor systems using GPU units in parallel that can do as stated that doesn’t translate to actually cracking an online account or even one at the console. Even though it is possible to do the calculations at a phenomenal rate it isn’t possible to try the combinations fast enough to see if they work. The cracking machine is billions of times faster than the rate at which the password cracks can be tried and that is the only way a brute force attack can work. In many cases the account will be locked out for a period of time after several incorrect attempts.