You don't need to go to the bother of running through rainbow tables. Windows admin passwords can be set to blank from some kind of boot disk you can download. It's pretty much assumed all security measures are moot once you have access to the machine anyway, unless you're using whole-drive encryption.
Here's an idea... What if WOTC had a cap for the amount that could be traded within a 24 hour period, unless otherwise approved. (What I'm thinking of is when your credit card company calls you when there is a large transaction on the account.) Personal contact info would intentionally take 5-7 business days to update just to remove the chance of a mass hack. Just a thought...
The cap is a terrible idea...it's already tedious enough to trade cards with the 32-per-trade limit.
The cap is a terrible idea...it's already tedious enough to trade cards with the 32-per-trade limit.