Attackers don't bother brute-forcing long passwords, Microsoft engineer says
According to data collected by Microsoft’s network of honeypot servers, most brute-force attackers primarily attempt to guess short passwords, with very few attacks targeting credentials that are either long or contain...