Skip to content

Learning Password Security Jargon: Dictionary Attack

We, as users, trust companies and service providers to keep our data safe. We hope that they don’t leave any backdoors in their software, properly train their employees, and don’t store usernames and passwords in plaintext.

But everything is not as simple as it might seem. Cybersecurity attacks can affect anyone, and sometimes it may be difficult to protect yourself or your business. But some of them, like dictionary attacks, can be easily prevented.

Learn what a dictionary attack is and what can you do to stop it from happening.

What is a dictionary attack?

A dictionary attack is a systematic method of guessing a password by trying many common words and their simple variations. Attackers use extensive lists of the most commonly used passwords, popular pet names, fictional characters, or literally just words from a dictionary – hence the name of the attack. They also change some letters to numbers or special characters, like “p@ssw0rd”.

Hackers use this attack to gain access to online accounts, but also for file decryption – and that’s an even bigger problem. Most people put at least some effort into securing their email or social media accounts. However, they choose simple, easy-to-remember everyday words to protect the files they share with other people. If sent over an unsafe connection, those files would be very easy to intercept, and guessing the password by using a dictionary attack wouldn’t be a challenge either.

How does a dictionary attack work?

During a dictionary attack, a program systematically enters words from a list as passwords to gain access to a system, account, or encrypted file. A dictionary attack can be performed both online and offline.

In an online attack, the attacker repeatedly tries to log in or gain access like any other user. This type of attack works better if the hacker has a list of likely passwords. If the attack takes too long, it might get noticed by a system administrator or the original user.

During an offline attack, however, there are no network limitations to how many times you can guess the password. To do it, hackers need to get their hands on the password storage file from the system they want to access, so it’s more complicated than an online attack. But once they have the correct password, they will be able to log in without anyone noticing.

What is the difference between a brute force attack and a dictionary attack?

Brute force attacks are also used to guess passwords. They mostly rely on the computing power of the attacker’s computer. During a brute force attack, a program also automatically enters combinations of letters, symbols, and numbers, but in this case, they are entirely random. Brute force attacks can also be performed online and offline.

However, there are 1,022,000 words in the English language. By using the alphabet and numbers 0-9, you can make 218,340,105,584,896 eight-character passwords. In this case, a dictionary attack is much more likely to succeed, given that the password will be a simple English word. And it will most likely be a simple English word. A basic brute force attack would take much more time and is less likely to be successful.

Dictionary attacks are brute force attacks in nature. The only difference is that dictionary attacks are more efficient – they usually don’t need to try as many combinations to succeed. However, if the password is a truly unique one, a dictionary attack won’t work. In that case, using brute force is the only option.

How to avoid a password dictionary attack?

The IT department in any organization should take some precautions to protect their systems from dictionary attacks. Online attacks are rather easy to stop. You can use captchas, implement mandatory two-factor authentication, and limit how many times one user can attempt to log in before their account is locked.

It’s a bit more complicated when it comes to offline attacks, though. But you can also use two-factor authentication and set up strict rules concerning passwords: no popular passwords, no common words or phrases, 12 character minimum, etc. And most importantly, make sure that you don’t store passwords in plaintext.

But what can you do as a user to prevent your accounts from getting hacked? First and foremost – don’t be predictable. The best passwords are words that have no meaning to the general public. Keep in mind that the length of the password is not what makes it strong. It doesn’t matter whether you choose “pachycephalosaurus” or “cat” as your password; a computer takes the same amount of time to try either of them.

So create new words, use special characters originally, or, best of all, use random strings of upper- and lower-case letters, symbols, and numbers.

Having trouble coming up with new passwords? Try our password generator. You can pick what symbols you want to use and create unique, strong passwords for all your accounts. Yes, they are impossible to remember, but they are also impossible to guess. And lucky for you, you no longer need to remember all your passwords.

Just use a password manager, like NordPass, to store all your passwords safely. Only you will have access to them, so you can rest assured that your online accounts are safe.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About Nord Security
The web has become a chaotic space where safety and trust have been compromised by cybercrime and data protection issues. Therefore, our team has a global mission to shape a more trusted and peaceful online future for people everywhere.

Leading SaaS Data Protection Provider Keepit Launches Advanced Protection for Microsoft Azure AD

New Cloud Data Protection and Recovery Solution Offers Unrivaled Protection for Azure AD Users

COPENHAGEN, DENMARK  – November 29, 2022 – Keepit, the market leader in cloud data protection and management, today announced the launch of its Azure AD Advanced connector, its full data protection solution for Microsoft Azure Active Directory. Keepit is the world’s only independent, vendor-neutral cloud dedicated to Software-as-a-Service (SaaS) data protection with a blockchain-verified solution.  

  

Azure AD Advanced is an extension of the Azure Active Directory (AD) connector that Keepit added to its multi-cloud backup and recovery solution in a software update earlier this year. Other offerings from the company include coverage for Microsoft Power BI and Azure DevOps, which allows Keepit to offer top-of-the-line data protection for the key Microsoft cloud services. 

 

“Although Microsoft has invested quite a bit of money in providing user-oriented recovery such as versioning, recycle bin, and preservation features, native protection tools for the directory are weak and have time restrictions,” said Paul Robichaux, Keepit’s Senior Director of Product and a Microsoft Most Valuable Professional (MVP).   

With our leading protection for Azure AD, Keepit helps companies close any Azure AD gaps in their security strategy as well as recover business-critical identity and application objects that Microsoft doesn’t protect.

With more than 550 million users, Azure AD is considered the heart of the Microsoft cloud ecosystem – making it imperative to protect it from compromises. Azure AD is used by organizations to help control, through secure authentication, who has access to data and user information.

Failing to properly backup Azure AD can leave companies at risk of experiencing security gaps that can lead to significant downtime, data loss, and lack of access to critical resources. Protecting Azure AD allows for quicker disaster recovery, enhances overall security, safeguards against day-to-day data loss, and improves information technology (IT) efficiency.  

To bolster coverage and recovery, Keepit’s new Azure AD Advanced release includes the following features: 

  

  • Conditional Access policies: Keepit enables IT admins to preserve, restore, inspect, and track differences in Azure AD Conditional Access policies
  • Application registrations: Keepit backs up application objects that have been registered in Azure AD. 
  • Service principals/Enterprise applications: Keepit backs up service principals registered in the Azure AD tenant along with their assigned permissions. 
  • Intune device configuration policies and device compliance profiles: Keepit helps organizations backup and recover their security-critical Intune device compliance and configuration policies in Azure AD to protect against unwanted or accidental changes that might affect device access. 
  • BitLocker key protectors: in an industry first, Keepit allows customers to protect and restore BitLocker key protectors to ensure continued access to BitLocker-encrypted devices.

Keepit’s new Azure AD Advanced release allows customers to enable data protection instantly, helping to avoid scenarios that require rebuilding the Azure AD environment from scratch. In addition to protecting data in Microsoft Azure AD, Keepit also provides fully automated coverage for other key business applications, including Microsoft 365, Microsoft Dynamics 365, Google Workspace, Salesforce and Zendesk.

With its unmatched ease-of-use, fast restore features that minimize downtime, and cost-effectiveness, Keepit continues to be the solution that organizations rely on to protect their cloud-based data.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About Keepit
At Keepit, we believe in a digital future where all software is delivered as a service. Keepit’s mission is to protect data in the cloud Keepit is a software company specializing in Cloud-to-Cloud data backup and recovery. Deriving from +20 year experience in building best-in-class data protection and hosting services, Keepit is pioneering the way to secure and protect cloud data at scale.

Leading the Era of Hybrid Communication!

IPEVO Inc. (TPEX:6858), a global leader in professional video communication, has officially announced its entry into the commercial video communication market. Given its optimistic outlook that “hybrid communication” will become the mainstream, and the growth potential for immersive communication with integrated virtual reality, IPEVO launched a series of 8 immersive communication products geared toward professionals, so that both businesspeople and content creators can fully experience intelligent video collaboration with superb video and sound quality.

The global demand and acceptance of video communication grew rapidly due to the pandemic. Fortune Business Insights, an international research organization, pointed out that the global video communication market will continue to grow in the next few years, and will expand at a compound annual rate of 11.3% to reach US$14.58 billion in 2029. IPEVO has gained a firm foothold in the US education market in the past through document cameras and has become the professional video communication brand favored by educators around the globe. With continued optimism about the business opportunities of video communication, IPEVO integrates past experiences in document cameras and AI software development, and increases its investment on design and R&D. The launch of a series of new commercial software and hardware products will officially launch in 2023 as the first year of the “hybrid communication” era.

Royce Hong, CEO of IPEVO, said,

“The future will be an era of hybrid communication. The environment of the past three years has greatly changed people’s work and living habits. In addition to video conferencing, an immersive collaboration and communication mode integrating both online and offline work across all professions will usher in 2023 as the first year of the ‘hybrid communication’ era. Through the new releases, IPEVO expects to offer people the opportunity to overcome the interpersonal communication barriers with technological tools, whether they are working in the office, at home, on the road, or as digital nomads. They can experience first-hand the convenience and infinite possibilities of the hybrid communication era through IPEVO’s products, that offer both quality and aesthetic.”

Hybrid communication becomes the norm

IPEVO launches the IPEVO TOTEM series of conference room cameras and the IPEVO VOCAL series of conference speakers.

IPEVO sets “creating infinite possibilities of communication” as its brand mission. Since its inception, it has focused on high-quality online communication experience as its product goal. As work modes evolve, the newly launched “TOTEM” series of conference room cameras can be utilized in various conference spaces selected by users, with functions such as plug-and-play, auto framing, and AI enhanced image quality. Three products, TOTEM 120, TOTEM 180 and TOTEM 360, will be launched to accommodate different wide-angle scenarios, covering 120, 180, and even 360-degree fields of view. They can be used in various communication situations to meet the demand of working anytime and anywhere, while maintaining communication quality.

The IPEVO TOTEM series of conference room cameras have a stylish appearance, as evidenced by TOTEM 120 winning the prestigious 2023 Taiwan Excellence Award. In addition to the built-in noise reduction function, the IPEVO TOTEM series can be used together with “VOCAL” conference speakers. IPEVO VOCAL offers the world’s first uplink and downlink noise reduction functionality to fully solve the problem of background noise, providing professionals with clear audio quality.

IPEVO has also developed the new EyeStage™ software to enhance the video interactive experience, by enabling conference participants can use split screen and face tracking. The built-in AI auto framing function provides portrait centering, 8-person split panoramic conference mode, and document sharing mode. In addition to increasing conference efficiency, it can also break down communication barriers and create a truly immersive hybrid video communication experience.

Enabling Diverse Hybrid Communication Applications

IPEVO Launches Portable Intelligent Scanner and Camera Module for Smart Integrations.

Building on years of experience in the development of document cameras, IPEVO sees that in addition to online conferences, the demand for video communication in the market has more diverse commercial application scenarios and development potential. People in every profession can take maximum advantage of hybrid communication. IPEVO introduced the portable intelligent document scanner solution “V4K-S”, which has three major functions: ultra-fast scanning of one page per second, document camera, and video conferencing camera. Through its SnapCapture OCR software, combined with ABBYY’s optical character recognition technology and Vantage’s smart document processing platform, it can quickly convert text images into machine-readable text, and use the data for analysis, automation, and other procedures. It will be sold as a subscription model in the future.

The new and compact “MP-8M” camera has an innovative modular design and unique mounting accessories. The viewing angle of the lens and its shooting distance can be freely adjusted and configured. It can also be combined with a variety of computer vision applications. With the current pace of digital transformation in various industries, emerging applications such as telemedicine, smart pharmacy, smart production, smart retail, and online financial services are constantly arising. MP-8M can be fully utilized in industrial and commercial fields with high demands for functions such as instant messaging, monitoring, and video recording. The captured images and information can be used as the data basis for edge computing or machine learning.

Creating a New Communication Model

IPEVO to Join Hands with Industry Partners to Usher in 2023 as the First Year of Hybrid Communication.

IPEVO is also working with several partners to apply relevant software and hardware products to digital learning, document processing, digital marketing, business collaboration and other diverse fields. The partnerships include Junyi Academy, ASUS cloud, iKala, Janux, JAG Technology and ABBYY. Industries such as business, education, health care, finance, and cloud storage can be enabled to integrate VR communication models and applications, moving towards the new era of hybrid communication.

Aaron Lee, GM of IPEVO, said,

“In 2022, given the optimism about the strong demand for video communication, IPEVO has formulated four major strategies, including doubling new product development, doubling market coverage, doubling technology development, and doubling partners. By going beyond the education field that we have been endeavoring in for many years, we look forward to working with our partners to design the highest quality software and hardware products for various industries and different business scenarios to create a new era of immersive hybrid communication for professionals.”

IPEVO’s new TOTEM series, VOCAL, V4K-S and MP-8M products will be available in the global market by the end of this year. EyeStage™ and SnapCapture OCR software can be downloaded from the IPEVO’s official website.

About IPEVO Inc.

IPEVO Inc. is a leading brand dedicated to the research and development of professional video communication products. With advanced technology and intuitive user experience design, it provides customers with solutions to improve communication efficiency.

Since its inception in 2007, IPEVO has been focusing on changing the face of video communication. Overturning the traditional overhead cameras for teaching, it redefined and designed a series of simple, lightweight, and easy-to-use document cameras and video teaching software. It further entered the field of commercial applications in 2022 by launching video collaboration products, enabling video-based teaching, learning, communication, conferencing and creative sharing, to be as natural and unrestrained as being in-person.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About IPEVO
IPEVO makes versatile teaching tools instead of specialized “classroom equipment”.
We go beyond the usual conventions of classroom technology—large, expensive, specialized and complex—to rethink simple and flexible solutions for interactive teaching in today’s classrooms.
IPEVO’s interactive teaching tools empower educators and teachers with radically affordable and compact technology that is simple, intuitive and flexible, so that precious time and resources can be wholly dedicated to teaching. We intend to make educational technology accessible and available to all.