Password Guessing, (PGing) also known in cryptography as Password Cracking,(PCrak) is an action in which a user tries to use different password combinations to get into another user's account. This has a questionable effect, as most methods require that the victim is using a weak or common password such as abc123, Password, the user's name, or qwerty.
PGing has been a common practice in 2017, where players snipe accounts just for namesnipes or to act that you are older on ROBLOX. When they added the forum age limit in May 1, 2017, many people PGed accounts just to forum.
Prevention
Please note: Password Guessing is against the rules and many people who manage to steal an account by Password Guessing are often banned. The following information is for the prevention of password cracking and general account safety.
Avoiding Common Passwords
The easiest way to get into another person's account is to guess from the top most used passwords. Various lists can be found quite easily, usually hitting only the top 1000 (some passwords are not appropriate for younger audiences). Keep in mind that any password on the top 1000 list can be cracked in a matter of seconds if done correctly.
Try to have a long, unique password; an easy trick is to use some weird, 3-4 word phrase. Abbreviating some phrase ("People live in glass houses" producing "pligh") also ensures protection from dictionary attacks.
Making it "random"
A password shouldn't have information about you, such as something you like or a thing you own and a common string of numbers (i.e. pizza123, 1337DS, etc.) Try to have your password be something someone wouldn't expect to type, as password guessers commonly try actual words/things and a simple number combo as listed above. Remember, however, try to make it easy to remember.
Consequences
Within the past year or two, ROBLOX have been cracking down on accounts that appear to be stolen. For example, if an account logs on for the first time in 10 years and changes the password or email, ROBLOX will lock the user out of the account and revert the email address. There is no way to bypass this, and the account can only be retreived if the original owner contacts ROBLOX. .
Risk
The risk of being attacked by password guessers varies on ROBLOX depending on the value of your account. Famous ROBLOXians have a higher risk of constant password cracking, and as such require strong passwords. However, it is recommended to use strong passwords for all your account.
It is advised to change your password to a secure password, turn on extra protection (2 Step - Verification) and sign out of all devices if another person is using your account without permission. Moreover, do not share personal information to anyone and avoid suspicious websites/videos(e.g. those that grant others "free ROBUX" or "free BC")