League of Legends got hackedPosted: 10 June, 2012
Today I got this friendly email in my inbox:
But hey! They’re sorry! [source]
Here we might see another example of the weakest link in the chain effect.
If they use something like MD5(password + SALT) it’s a bit harder to crack that stuff, right?
Thanks to people having passwords like “password” and “123456” you simply calculate the hashes only for those passwords with lots of different salts.
Then you just search for matches in the list, see if the login works. If it does, you found yourself the salt you where looking for!
And there you go, less security because some idiots use weak passwords.
Thanks for nothing bastards!