A brute force attack is a trial-and-error tactic used by hackers to crack login credentials, encryption keys, and hidden URLs.
As implied by their name, brute force attacks use brute force techniques in the form of endless login attempts to gain unauthorized access to private accounts, sensitive files, organizations’ networks, and other password-protected online resources. This is achieved by employing bots that continuously try different combinations of usernames and passwords to break into accounts.
Despite having been around for decades and being relatively simple, brute force attacks remain quite popular and are still commonly used by hackers due to their effectiveness. In fact, at least 80% of today’s breaches involve brute force attacks or the use of lost or stolen credentials.1 This should come as no surprise given that there are over 15 billion compromised credentials currently in circulation on dark web forums that hackers can easily access.2