A Brute Force Attack is an attack in which every possible combination of letters, numbers, or words is tried in response to a shared secret authentication prompt. Password prompts are the most common targets of brute force attacks, which can be effective to a degree that surprises many users. Without throttling controls, a typical seven-character password can be brute forced in a matter of minutes, an eight-character password in a matter of hours.¶Even with throttling controls in place, attackers can easily bypass them for high-value targets by using a distributed botnet that makes attempts on a reduced-frequency schedule over a longer period of time, a form of brute force attack that can in many ways be classified as an advanced persistent threat (APT).
Stay informed. Join our low-volume list for news and updates.