Everything you described is very funny.
When there is such a problem that there are no logins in the system, and users using a password can go into someone else’s account - this is a huge security hole. You recommend a password of 20-40 characters, but this does not exclude the possibility of logging into my account. Do you understand this? This is a HUGE hole in safety. Even assuming that I use a password of 20 characters - there is a chance that it will match up with another user and the more such users will be - the higher the chance. Do you understand this? This not normal. It is not safe! You recommend longer passwords to reduce the chance of getting into someone else’s account, but you do not exclude it!
But in the case, it was completely different. Indeed, my password does not contain 40 characters, but It is not an easy password! You understand, he steal the money of users who trusted their NEM! This is not the situation when I used a common password and the person accidentally got into my account and stole my money. This hacker is constantly engaged in stealing money. Because there is a security problem in the NEM system.
This is not an accident, it is a purposeful use of the vulnerability of the wallet. This is a purposeful theft of funds from the wallet. The hacker saw 30 thousand dollars in the account and started hacking my account. A longer password would simply increase the amount of time it takes to crack and that’s it. The problem is not solved the way you described it!
This man steals money is not the first time!!
http://chain.nem.ninja/#/search/NCWPLQ-CVARBY-XXPCC3-KDAZUQ-4MNL2L-NS7YIR-M2XU
Do you see this? He is constantly hacked other accounts, he constantly transfers other people’s money to wallet. The problem can not be solved simply by using long passwords, the wallet should be protected from brute force. Do you understand this?