ElcomSoft's Internet Password Breakers Scares the Crap Out of Us

rated by 0 users
This post has 10 Replies | 2 Followers

Top 10 Contributor
Posts 26,354
Points 1,191,515
Joined: Sep 2007
ForumsAdministrator
News Posted: Wed, Nov 10 2010 1:52 PM
Listen up ladies and gents, if you aren't in the habit of changing up your passwords every once in awhile, consider doing so. Not only is it good practice in general, but as it turns out, your browser does a pretty piss-poor job of covering your tracks. Enter Russian software maker ElcomSoft, which just announced a password recovery tool called Internet Password Breaker that purportedly works with Firefox, Safari, Opera, and Chrome.

"ElcomSoft Internet Password Breaker instantly retrieves login and password information stored in a variety of applications, including popular email clients and Web browsers," ElcomSoft says. "In addition, cached logins and passwords, pre-filled forms, and AutoComplete information can be extracted from the browser cache or secure storage areas.


"The new release adds four popular Web browsers to the list of supported applications, including Mozilla Firefox, Apple Safari, Google Chrome, and Opera, expanding its Web browser coverage to about 93 percent of the market."

In addition to the above mentioned browsers, ElcomSoft's software is also able to instantly reveal account information, logins, passwords, and cached forms in Microsoft Outlook, Outlook Express, Windows Mail, Windows Live Mail, and all versions of Internet Explorer up to version 8.


We're reminded of the mantra that "guns don't kill people, people do," and in that sense, ElcomSoft's utility is exactly what you make of it. We gave a pre-release version of the software a whirl, and sure enough, when used for good, ElcomSoft's utility proved adept at 'recovering' login info from a variety of sources, which could come in mighty should you suffer a brain fart when logging into a site you rarely visit.

The new version will be available starting tomorrow, November 11th, for $49.
  • | Post Points: 110
Top 50 Contributor
Posts 3,236
Points 37,910
Joined: Mar 2010
AKwyn replied on Wed, Nov 10 2010 2:23 PM

Eh... This is not news, I've seen many password recovery software recover passwords before this. This does not scare me at all unless a hacker broke into my system and broke all my passwords with this.

Then again, he would have to pay for it in order for it to be usable.

 

"The future starts with you; now start posting more!"

  • | Post Points: 5
Top 150 Contributor
Posts 551
Points 5,025
Joined: Nov 2010
Location: Harker Heights

Once someone has physical access to your computer, there is no such thing as security. I'm not a hacker, but give me physical access to your machine and I will have all your data no matter what security you use. This little program requires physical access to the computer while puts it in the same catagory as literally hundreds of others. Even an invisible hidden OS is not protection.

I've used Bart PE to recover system login information for numerous people before, done forced bios resets to get around bios passwords, along with several other cracks. It is a fact of life that most people are not good at coming up with a password and not good at remembering it.

  • | Post Points: 20
Top 25 Contributor
Posts 3,795
Points 40,670
Joined: Jan 2010
Location: New York
Inspector replied on Wed, Nov 10 2010 3:32 PM

ya... well i care less xD. Maybe its just i need to face one of these issues first before i can understand it :(... I have my passwords macroed to my Gkeys... lol

  • | Post Points: 5
Top 10 Contributor
Posts 5,053
Points 60,715
Joined: May 2008
Location: U.S.
Moderator
3vi1 replied on Wed, Nov 10 2010 4:15 PM

I agree with InfinityzeN1 for the most part: "Protection" on 99+% of the systems I've seen (including Win7) can be circumvented by inserting a Linux LiveCD and running the 'chntpw' command to reset the Windows Admin password to whatever you want.

If you want security, don't use the one browser that gets pwnd the most, and use full disk encryption or ecryptfs.

What part of "Ph'nglui mglw'nafh Cthulhu R'lyeh wgah'nagl fhtagn" don't you understand?

++++++++++++[>++++>+++++++++>+++>+<<<<-]>+++.>++++++++++.-------------.+++.>---.>--.

  • | Post Points: 20
Top 50 Contributor
Posts 3,236
Points 37,910
Joined: Mar 2010
AKwyn replied on Wed, Nov 10 2010 4:37 PM

3vi1:
I agree with InfinityzeN1 for the most part: "Protection" on 99+% of the systems I've seen (including Win7) can be circumvented by inserting a Linux LiveCD and running the 'chntpw' command to reset the Windows Admin password to whatever you want.

Don't you have to be able to break into people's houses to get to their systems, run the CD and execute the command?

Or are there other ways that they can get our hands on our systems...

 

"The future starts with you; now start posting more!"

  • | Post Points: 20
Top 10 Contributor
Posts 5,053
Points 60,715
Joined: May 2008
Location: U.S.
Moderator
3vi1 replied on Wed, Nov 10 2010 5:09 PM

>> Don't you have to be able to break into people's houses to get to their systems, run the CD and execute the command?

Child's play.

http://www.youtube.com/watch?v=hr23tpWX8lM

What part of "Ph'nglui mglw'nafh Cthulhu R'lyeh wgah'nagl fhtagn" don't you understand?

++++++++++++[>++++>+++++++++>+++>+<<<<-]>+++.>++++++++++.-------------.+++.>---.>--.

  • | Post Points: 5
Top 75 Contributor
Posts 1,809
Points 18,105
Joined: May 2009
Location: Waikiki

Of course it comes from Russia!

Those people have nothing better to do than exploit their hottest women in porn, run drug and weapon trades, and generate cyberwar built on proven tech from other countries modified for nefarious purposes.

That is the end role of socialism after everyone has been robbed of rights and their existence. They must always go back to attacking capitalism by the only way that lets them survive, by using the capitalist system!

All I can say is always make sure that your remote capabilities is turned off!

"GO WOLVERINES!"

Intel Core i7-875K Quad
Asetek 510LC 120MM
4GB Kingston Hyper-X DDR-3
ASUS P7P55D-E Pro
CyberPower 800 PSU
Kingston 64GB SSD 
2 Hitachi 1-TB HDD'S
FirePro V8800
8X Blu-Ray DVD±R/±RW
HPw2207 22" LCD
Cintiq 21UX
CoolerMaster 690II Advance
Win 7 Pro 64 bit
Special thanks to HotHardware.com!
  • | Post Points: 5
Top 50 Contributor
Posts 2,917
Points 24,655
Joined: Jul 2001
Location: United States, New York
digitaldd replied on Thu, Nov 11 2010 9:58 AM

Lets see most people simply save all their passwords in their browser. and a simple too like konboot to boot their machine and login without having to change the password. its great for pranks too.Devil

  • | Post Points: 5
Top 500 Contributor
Posts 225
Points 2,395
Joined: Dec 2008
Location: San Antonio
Kiristo replied on Wed, Nov 17 2010 12:06 AM

ElcomSoft's SQL password recovery tool also works very well should anyone need to crack a lost SA password...more likely than needing this for a good reason, most sites have a "Forgot Password" option.

  • | Post Points: 5
Not Ranked
Posts 1
Points 5
Joined: Apr 2012

Elcomsoft Internet Password Breaker

  • | Post Points: 5
Page 1 of 1 (11 items) | RSS