Threat Spotlight: Brute-Force Attacks and How to Defend Against Them
What Brute Force Attacks Are
Basically, you can imagine a brute force attack as a method which involves the rapid input of passwords and usernames in succession. They?re designed to crack encrypted data by finding a usable password. Most brute force hacking attacks are performed by an algorithm and can input a ridiculous amount of credentials every second. The reasoning behind the name, ?brute force,? is due to the brutal assault on the system, rather than taking a more discreet or intellectual path to hack the system. There are many different types of brute force attacks, but one of the most popular ones is the dictionary attack, in which passwords are generated with a dictionary, using popular words, in order to access the system.
Why They?re Dangerous
According to a McAfee Security Report from 2015, brute force attacks account for about 25 percent of all online hacks, second only to Denial of Service attacks. One of the reasons why they?re so popular is that they can be used as a straightforward way to infiltrate privileged accounts and steal sensitive information. These attacks are typically used to access accounts and steal credentials like credit card numbers, Social Security numbers, and other data that could be used for financial gain.
Furthermore, brute force attacks can be used to install what?s called a rootkit on a device, or turn a PC into a bot. Most often, brute force attacks will be seen as a jumping-off point for other types of threats to terrorize the targeted machine.
What You Can Do
Having a security solution put into place that can lock users out based on IP location or failed login attempts can be a great way to protect against brute force attacks. However, both of these methods can be bypassed if the hacker is using a botnet. Since the botnet consists of several infected computers from all over the world, they will have different IP addresses and be identified as individual users, rendering the aforementioned security practices moot.
Another useful technology to have to protect against brute force attacks is two-factor authentication. By providing another layer of security, in addition to the required password, brute force attacks will be rendered useless. Without the secondary credential that gets sent to a smartphone or email address, any attempts to brute force an account with a password will be pointless. This is why it?s always recommended that you use two-factor authentication.
Your business should be prepared to handle all types of online threats, especially those that can lead to more dangerous or destructive results. White Mountain IT Services can provide your organization with security solutions that are designed to maximize your network?s protection against brute force attacks, and other online threats that could have an impact on your business?s operations.
To learn more about what we can do for your company, give us a call at (603) 889-0800.