A hacker by the name of Kingcope has found another security problem with the popular database. Using an already well-known characteristic of the database’s user management, it is possible to significantly increase the speed of a brute force attack. To crack a four-character password with remote access to the database took just 20 seconds with over 100,000 character combinations tested. The hacker used the John The Ripper password cracker to create a password list and has documented the attack with a Perl script and record of a command line session.”]

