Programming Errors Weaken bcrypt Hashes of Ashley Madison Passwords
Ashley Madison encrypted users' passwords using the bcrypt function. It's a secure password-encryption function, but two implemention programming mistakes allow millions of passwords to be easily decrypted. Ars Technica explains the problems.
Posted on September 14, 2015 at 6:26 AM • 31 Comments