The best prevention for a brute-force attack is a long, complicated password that is encrypted when stored. Security systems should be designed to detect and alert on multiple incorrect login attempts or if login attempts are coming from different, unfamiliar IP addresses. Users should be required to change their passwords regularly, with a mix of characters, and should complete mandatory training about the importance of good password hygiene. The use multi-factor authentication as much as possible further mitigate the risk of credential theft.
As long as businesses rely on passwords, hackers will try to manipulate them and use them to gain access. The more you know about how passwords are used in attacks, the better you can strengthen your entire credential system.
Discover how Verizon's managed security services can help keep your organization safe.