I could harvest 5m gmail names from google searches, and then publish them with bogus passwords and create panic. Is there some statistic that says how many of these were real passwords?
Statistics, probably not. But to confirm they're not just all made up, I checked a few of the ones that were obviously a password for another site (one of the '+' addresses) and after 4 tries, found one that worked (on the 'other site', not on gmail). So they're definitely not just 'made up' passwords; they just aren't necessarily a password that was ever actually used for the email address they're associated to.
where are you finding the passwords? Im on the list and use KeePass for just about everything so should be able to nail down exactly where they got my password from.
The list with passwords was easily available for a while (and still is if you hunt around a bit - I found it without too much trouble).
I'd guess it's just hacks of other sites, filter it on just gmail accounts and hope they used the same password for both
I'm pretty sure that's right. Actually, I'd say I'm around 5 nines certain.
My email is on the list (afforess@gmail.com, go check!) I use a password for gmail I have never used for any other site.
According to the list, the password is a 7 character string, lowercase, moderately common first name starting with c.
Tbh I'm surprised no one has mentioned Devonport as a likely site, especially given that that's where the Vanguards, along with all our other submarines are sent for refits. The gear is all there already to support them.
If Scotland boots them out, they have a ready to roll port to go to, along with all the facilities to maintain them.
"A car is just a big purse on wheels." -- Johanna Reynolds