This is a bit scary, especially given that some systems put a limit on the size of passwords you may use. Of course, they need to get hold of the encrypted (or hashed) password in the first place so that should provide a basic line of defence, but it is a remarkable feat, using incredibly cheap hardware. Time to make my passwords longer and stronger, I think. Recent reearch suggests that the strongest are not those that have weird and wonderful mixes of letters and symbols and numbers (easily forgotten), but that use sentences (but not obvious ones that can be found with a web search – poems and song lyrics are not a good choice!)
Address of the bookmark: http://www.computerweekly.com/Articles/2011/10/04/248075/GPU-cracks-six-character-password-in-four-seconds.htm
