CNBC withdrew a story from its website Tuesday that described good password practices after a tool included in the piece actually collected and exposed the passwords.
Credit: CNBC
An exercise in password security went terribly wrong, security experts say
By Jeremy Kirk
IDG News Service
CNBC inadvertently exposed peoples' passwords after it ran an article Tuesday that ironically was intended to promote secure password practices.
The story was removed from CNBC's website shortly after it ran following a flurry of criticism from security experts. Vice's Motherboard posted a link to the archived version.
Embedded within the story was a tool in which people could enter their passwords. The tool would then evaluate a password and estimate how long it would take to crack it.
A note said the tool was for "entertainment and educational purposes" and would not store the passwords.
That turned out not to be accurate, as well as having other problems.
full article here: