so you and your users follow all the rules. You use only passwords that meet stringent complexity requirements and are a minimum length, so your accounts should be safe, right? According to a new research paper from Carnegie Mellon, you just might be operating under an illusion of false security. It seems passwords thought to be strong are often surprisingly easy to crack - because of the way people tend to think when creating them.
So what is it that we're doing wrong? Read this and find out.