In late May, a Microsoft program manager announced that the Microsoft service to log into services such as Xbox Live and OneDrive have been systematically banning (i.e. “blacklisting”) easy-to-guess passwords. However, a quick attempt to create a password shows that slight variations on easy to guess passwords are still being allowed, such as “Pa$$w0rd1”. While blacklisting certain passwords has shown to be a slightly-more effective way to reduce information hacks, it’s limitations lie within how far the blacklisted passwords go. Read more at ARS Technica.
