Another blog post at $dayjob
So I wrote another one at work. After explaining to various parties how and why password cracking attempts happen, I felt it was prudent to write the whole thing down for future reference outside the corporate walls.
With that in mind, your passwords have almost certainly been compromised
TL;DR: use high-entropy passwords, a password manager, and proper 2-Factor authentication.