Cracked weak credentials
Description
The low complexity of the hashes stored in the database considerably reduces the amount of time required to crack them.
Impact
Unauthorized access, or even the insufficient data validation can make the system vulnerable.
Recommendation
Ensure that functions of password summary have a minimum size of 256 bits.
Threat
Authenticated attacker from Internet with access to the hashes.
Expected Remediation Time
⏱️ 30 minutes.