Surely that's not an english plaintext, frequency distribution doesn't fit.
We can try a bruteforce and see if something show up.
Brute force is against the "rules", no?
The earlier brute force comment was related to my not-so-serious suggestion that the password could be brute-forced against their api, which be similar to a DOS. There are no rules to anything that is done offline that doesn't affect others.
Makes sense. I should have edited my post. I was under the presumption that is was puzzle-wide, if you will.
Sorry to clog up the thread.