This is one of the comnments from below the story:
Feb 7, 2012 9:30 AM CST
First of all, there isn’t any equipment that can crack a password with a brute force method method, that; “rapidly tries out all possible combinations” of google email passwords. That type of method was rendered virtually impossible many years ago by the use “captchas”, meaning that after 5-10 incorrect password attempts, the user will be presented with a “test”, such as a distorted word, that they are required to read and retype correctly before proceeding. Automatic computer programs can not read the “captacha”, so if a correct answer is typed, the user is assumed to be human. With each subsequent “guess”, a new captcha is generated, that must be answered correctly, for the very purpose of making it impossible to use an automatic program that “rapidly tries out all possible combinations.”
Second, there is no such thing as a hacking collective named “Anonymous”. The is a name that is just being used by, oh, just about any and every basement dwelling “script kiddie” on the planet, most of who couldn’t hack their way out of a paper bag without being handed a sharp stick and a 20 page tutorial.
Third, if all that was “hacked” (and I use that word loosely) were passwords to email accounts, most likely the perps. used either a password stealer program or just went phishing. Both methods rely primarily on the use of “social engineering”, meaning that they just tricked some dumb sap(s) into opening a “spoofed” email and downloading an infected attachment, or into inputting their username and password into a faked (phished) websitesite.
A company’s security system is only as strong as it’s most gullible employee
It wouldn't surprise me.
Well, I hope they flog the little nosepicker when they catch him, and then put him on trial. Doesn't matter how amatuerish or incompetent the hack was, it damaged lives and is a crime.
Or one who decides that "1234" is a great password because it's easy to remember.