Can AI Be Used By Hackers To Crack Passwords? | Inquirer Technology

Can AI Be Used By Hackers To Crack Passwords?

/ 10:26 AM May 06, 2023

hacking using artificial intelligence

Getty Images©

Hackers often spare no effort in coming up with new ways to achieve their duplicitous ends, and some could very well use ChatGPT with such unscrupulous intent.

With cleverly written prompts, they may indeed be able to obtain the passwords of some individuals, at least those who have chosen something related to their own life (date of birth, children’s names, pets, etc.) as a source of inspiration.

Article continues after this advertisement

Computer security specialists, like Check Point, have already tested the approach. In fact, just by giving information about someone, or referring to their online biography, ChatGPT is able to imagine examples of passwords that this person could use based on their life, hobbies, preferences, jobs, etc.

FEATURED STORIES

Fortunately, ChatGPT isn’t fooled by direct requests of this type, responding with answers like “I’m sorry, but it would be inappropriate and potentially dangerous to suggest or guess passwords that this person might use to access their online account.”

However, an artificial intelligence specifically dedicated to password cracking has been available on GitHub for a few years now. PassGan has been fed with machine learning from a database of several hundred million passwords.

Article continues after this advertisement

The cybersecurity specialists at Home Security Heroes have also put together a tool that shows, in theory, how long it would take an artificial intelligence to crack a password. Depending on its complexity, it could take from a few seconds to several billion years!

Article continues after this advertisement

So far, it has been found that around half (51%) of “classic” passwords can be cracked in less than a minute, 35% in less than an hour, and 71% in less than a day. The more complex the chosen password is, the longer it will take to crack, even for a well-trained artificial intelligence.

Article continues after this advertisement

To summarize, beyond 10 characters mixing lowercase, uppercase, numbers, and special characters, you are relatively safe.

But in any case, double authentication, which consists of validating access to your account via a code provided by SMS, email, or a dedicated app, will prevent anyone from approaching your data, even after successfully cracking your password via ChatGPT or otherwise.

Initially published on May 6, 2023. Updated on May 29, 2023
Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our daily newsletter

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

TOPICS: Artificial Intelligence, hacking
TAGS: Artificial Intelligence, hacking

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our newsletter!

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

© Copyright 1997-2024 INQUIRER.net | All Rights Reserved

This is an information message

We use cookies to enhance your experience. By continuing, you agree to our use of cookies. Learn more here.