[scott00]

Depends on your definition of a good password.

The experience of one victim mentioned suggests it's economical to crack at least 50 bit entropy passwords for at most a $3.5 mil payout.

50 bits isn't great, but it's not terrible either.

[mptest]

My password was made with the best practices, but I see people mention the amount of iterations done. Does that basically mean just Iterations * each attempt to brute force? ie 2 rotations to figure out a 1 digit pin = (1/10)2= 20 max guesses? Thanks a lot for reference though re 50 bits and 3.5. Helpful numbers to keep in mind.

(Edit: looked more in to how to calc password entropy. Luckily I'm good. Thanks a lot for this info tho.)