24Haz
Is there any reliable information on how many places make the mistake of storing passwords in plaintext?
I think the risk of passwords being stored in plain text (or easily reversible encryption) is well known. I'm curious though how frequently does it actually happen? Has there been any study or reliable research on it's frequency?
For example of all the sites that have been compromised do we know how many compromised sites had plain text passwords being sold afterwards, as opposed to say a salted hash being sold?
