Targeted brute force attacks are on the rise

We have seen quite a few leaked databases with usernames and passwords from various sources recently and with this brute force attacks are increasing.  The information within the databases is harvested and incorporated into the attack.  With these fresh leaked credentials there is a higher success rate of the brute force method.

What is a brute force attack?

One of the most common security attacks. The idea behind the brute force attack is to try all possible combinations of passwords until an attacker finds the one that works. These attacks persist because there are many automated bot tools available and the pre-built digests help them crack accounts. In addition, users continue to be a weak link, often choosing simple, easy-to-crack passwords or using the same password across different services.

How to protect yourself

1. Set a unique secure password, not in the dictionary with a mixture of alphanumeric and special characters.
2. Install a firewall that intelligently blocks brute force attacks.
3. Refrain from using accounts with default usernames ‘admin’ ‘administrator’ to something harder to guess.
4. Delete any unused accounts to reduce your attack surface.
5. If available always enable two-factor authentication
6. Do not reuse a password on multiple services. That way if you have a password from a data breach in any database, it won’t be the same as your other passwords.

WebbyTech can help offering security advice, from practical measures to implement, whether you would benefit from a next generation firewall device to monitor for such attacks, or improving your policies and procedures for password security.  We can help keep your network secure – contact us today on 0333 320 7335 or email info@webbytech.co.uk