Kaspersky
Question

Generating weak Paswwords

  • 5 October 2020
  • 14 replies
  • 418 views

I have been using my password manager for years. Until just recently ( few days ago) I have been receiveing alerts from my Password Manager that I have several weak passwords. 

All of my passwords use the maximum amount of numbers, letters, and special characters, that are allowed by the site rules.

Why then ….after years of never having weak passwords, all of a sudden the next day I have a slew of “weak” passwords ????????


14 replies

Userlevel 7
Badge +5

Did you check the site record with the password in “Password check”? Is it unique?

Userlevel 7
Badge +5

Update: in patch “n”, which is expected in December, the notification will be “Password requres your attention” and if you hover your mouse cursor over this message, the text “Go to Password Check for details” appears. In Password Check tab it can be either weak, not unique or both. 

 

Please check your passwords (where this message appears). In addition, make sure that passwords are unique for each KPM entry.

Thanks!

Userlevel 7
Badge +10

Hello @hellermen,

Welcome!

 

 

 

We’re checking some information with Kaspersky. 

We’ll update as soon as we can. 

Thank you:pray_tone3:

Flood:whale:& :whale2:

Thank you so much for that information.   So glad I wasn’t just imagining this.

 

Please advise ASAP …..as I have been changing many of my passwords on my KPM.

Very time-consuming.

Userlevel 7
Badge +5

Hi Flood:whale::whale2:

You are making a good point, we will look into this. 

Right now you can check the reason for “Weak password” on the tab “Password check”. 

Possible reasons:

  • Low strength
  • Not unique

Regards,

Igor

Userlevel 7
Badge +5

@Berny Hi Berny, did you check the Password Check tab, what’s the reason for the “weak password” on those sites? 

  • Low strength
  • Not unique 

?

Userlevel 7
Badge +5

Hi Berny, np 🙂 You can reproduce the Weak password message by creating two records with the same password. No matter how strong it is, since it is not unique, having the same password for more than one account is considered a weakness in KPM.

 

Userlevel 7
Badge +10

Hello @hellermen

You are most welcome:relaxed: !

  • Yes, it is time consuming, so is spending 3 hours talking to Kaspersky about the issue:tired_face:
  1. Have any of the newly changed passwords, that meet all of Kaspersky’s recommended “complex” password rules, been generating “weak password” alerts? 

Newly changed  = AFTER patch M, a password that was marked as  “weak password”, you subsequently changed and the NEW complex password is also marked  “weak password.”

Please let us know?

Thank you:pray_tone3:

Flood:whale::whale2:

Userlevel 7
Badge +8

@hellermen I can’t reproduce this issue , if so  please contact Technical Support

 


 


When rolling back to the old password it becomes weak again.

Userlevel 7
Badge +10

Hello @Anton Mefodys

Thank you for replying. 

If the “weak password” alert is showing for duplicated passwords it should say “duplicated password”, not “weak password”.

weak password” for duplications is misleading. 

Thank you:pray_tone3:

Flood:whale::whale2:

Userlevel 7
Badge +10

Hello @Igor Kurzin,

Thank you for the update:ok_hand_tone3:

A sample: 3 Passwords that, with Patch M, KPM is alerting as “weak” checked with Kaspersky password checker

 

 

 

 

 

Our passwords are autogenerated by KPM, meeting all Kaspersky’s recommended pwd guidelines

Thank you:pray_tone3:

Flood:whale::whale2:

Userlevel 7
Badge +8

@Igor Kurzin Hi Igor,  ​I can’t reproduce :thinking:
Also , after saving it takes a few seconds before “Weak password” disappears.
When rolling back “Weak password” shows up again.
Same passwords below as the post above your post  are not duplicates :

 

 

 

 

Userlevel 7
Badge +8

@Igor Kurzin Sorry for the confusion Igor ..

I modified in KPM  3 “Weak password” and as shown above in my screenshots KPM doesn’t mark them as weak anymore :thumbsup:

Also when checking same above passwords on https://password.kaspersky.com/  i get this message

I just wanted to point out that on my side everything is OK , both KPM as well as

https://password.kaspersky.com/ are not marking my passwords a weak …. :thumbsup::thumbsup:

Reply