Skip to content

Davey Winder

delivering award-winning technology journalism since 1991

  • home
  • about me
  • follow me on mastodon
  • privacy policy
  • Toggle search form
Magnifing glass looking at password hidden in computer code

Brute force attack mitigation 101

Posted on May 30, 2016May 30, 2016 By Davey Winder

These days, any hacker worth the name will not bother with just throwing CPU power at the brute force problem…

You will often hear the much-repeated, yet still mistaken, mantra that there’s nothing you can do to stop a brute force attack. The truth is that while the odds are stacked in favour of the determined attacker, that doesn’t mean that mitigation methods cannot be effective.

Trying to write a meaningful history of the brute force attack is pointless. The bad guys have been trying to guess passwords to accounts that don’t belong to them since, well, forever. Back in the day, hackers would use various techniques for educating those guesses; everything from dumpster diving (where skips and bins outside businesses were raided in order to find documentation containing login information), through to social engineering (conning staff into handing over the password), and, of course, the use of commonly implemented weak strings.

It’s the latter that quickly became an automated task, with savvy hackers setting a database of likely words on the task as a batch process, and then sitting back until the crack was complete. These became known as dictionary attacks, and cracking tools such as Cain and Abel, John the Ripper, and L0phtCrack became popular methods of executing them.

Click here to read complete article

Hacking Tags:Advice, Hacking, MSP, passwords

Post navigation

Previous Post: CIOs at the forefront of championing cyber security
Next Post: How to prepare for serious cyber attack – and mitigate the risk

Related Articles

Yeah, But No, But Yeah: The Strange Tale Of 3 Million Hacked Toothbrushes Hacking
Tesla Hacked As Electric Cars Targeted In $1 Million Hacking Spree Announcements
Jaw-Dropping New Hack Turns Your Phone Screen Into Covert Spy Camera Hacking
Google Security Warning: First Hack Attack Of 2024—Update Chrome Now Google
Gmail 2024 Hack Attack Advice: Turn It Off And On Again, Google Says Google
Hackers Prompt Emergency Google 0-Day Attack Patch For Chrome Users Google

Categories

Post Archive

Tags

0day Analysis Android Apple Apps breach bug bounty Business Chrome crime Cybercrime Data Protection Encryption Enterprise Google Government Hackers Hacking Health healthcare industry iOS IoT iPhone Malware Microsoft News NHS Opinion passwords Phishing Privacy ransomware Research Russia Samsung threat intelligence Twitter Update Vulnerabilites vulnerabilities Vulnerability Windows Windows 10 zero-day

Copyright © 2025 Davey Winder .

×
Cookies
We serve cookies. If you think that's ok, just click "Accept all". You can also choose what kind of cookies you want by clicking "Settings". Read our cookie policy
Settings Refuse all Accept all
Cookies
Choose what kind of cookies to accept. Your choice will be saved for one year. Read our cookie policy
  • Necessary
    These cookies are not optional. They are needed for the website to function.
  • Statistics
    In order for us to improve the website's functionality and structure, based on how the website is used.
  • Experience
    In order for our website to perform as well as possible during your visit. If you refuse these cookies, some functionality will disappear from the website.
  • Marketing
    By sharing your interests and behavior as you visit our site, you increase the chance of seeing personalized content and offers.
Save Refuse all Accept all
GDPR Cookie Policy