AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

LLMs Generate Predictable Passwords

mediumnewsLLM-Specific

safetysecurity

Source: Schneier on SecurityFebruary 26, 2026

Summary

Large language models (LLMs, AI systems trained on text data) are very bad at generating passwords because they create predictable patterns instead of truly random ones. The study found that Claude, an LLM, always started passwords with an uppercase G followed by 7, avoided repeating characters, never used the * symbol, and repeated the same password 36% of the time across 50 attempts. This is a serious problem because autonomous AI agents (AI systems that act without human control) will need to create accounts and authenticate themselves, but the passwords they generate are weak and easy to crack.

Classification

Attack Type

Other

Attack SophisticationTrivial

Impact (CIA+S)

integritysafety

Affected Vendors

Anthropic

Related Issues

high

Anthropic accuses Chinese AI labs of mining Claude as US debates AI chip exports

Same vendorTechCrunch

high

CVE-2022-21727: Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `Dequantize` is vulne

First tracked: February 26, 2026 at 11:00 AM

Classified by LLM (prompt v3) · confidence: 85%