Study Title: 2013 Trustwave Global Security Report
Study Publisher: Trustwave
Study Date: February 22 2013
Study URL: https://www.trustwave.com/Resources/Global-Security-Report-Archive/
Trustwave obtained hashed passwords from thousands of network penetration tests performed throughout 2012, mainly from Active Directory servers. Their collection contained nearly 3.1 million passwords. Over 95.52% (approximately 2,961,120) were recovered via password cracking and then analyzed by Trustwave.
Statistics From This Study: