{"id":6733,"date":"2022-03-08T11:44:03","date_gmt":"2022-03-08T11:44:03","guid":{"rendered":"https:\/\/www.cldy.com\/support\/?post_type=docs&#038;p=6733"},"modified":"2023-01-03T18:50:35","modified_gmt":"2023-01-03T10:50:35","password":"","slug":"what-are-the-types-of-brute-force-attacks","status":"publish","type":"docs","link":"https:\/\/www.cldy.com\/support\/help\/what-are-the-types-of-brute-force-attacks\/","title":{"rendered":"What are the types of Brute Force Attacks?"},"content":{"rendered":"<p><span style=\"font-weight: 400;\">In one of our articles <\/span><a href=\"https:\/\/www.cldy.com\/support\/help\/what-is-a-brute-force-attack\/\">What is a brute force attack<\/a><span style=\"font-weight: 400;\">, we give you an overview of what a brute force attack is: a \u201cforceful\u201d attempt to access a file, account, or network, whether it is authorized or unauthorized access. Here, we will further classify the different types of brute force attacks, when they are used, and how it is done.<\/span><\/p>\n<p>&nbsp;<\/p>\n<h2><b>Types of Brute Force Attacks<\/b><\/h2>\n<ul>\n<li><b>Dictionary Attack<br \/>\n<\/b><span style=\"font-weight: 400;\">A dictionary attack is when a hacker uses sets of password combinations that are related to you. If your basic personal information is known such as your name, date of birth, and address, these are the combinations that will be used to try to get into your account\/s. Favourite books, authors, singers, some of these are also used as password combinations to try and get access (information visible if shared, say, through social media platforms)<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">Another thing they take note of is when a platform prompts to change password at a given time duration (for example after 30 days or after 90 days), they simply tweak like adding 1 or 2, so they can keep their old passwords without having to remember another one. So attackers will also try these combinations along with a past password you may have used.<\/span><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul>\n<li><b>Simple Brute Force Attack<br \/>\n<\/b><span style=\"font-weight: 400;\">In contrast to a dictionary attack, a simple brute force attack uses random password combinations (all possible combinations) that are commonly used.<\/span><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul>\n<li><b>Hybrid Brute Force Attack<br \/>\n<span style=\"font-weight: 400;\">This is a combination of simple and dictionary brute force attacks. It uses combinations of password combinations linked to you, your personal information, and your preferences. This time, they attempt different sequences of characters along with them (e.g. yourfavoritebook5, yourfavoriteauthor310).<\/span><br \/>\n<\/b><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul>\n<li><b>Reverse Brute Force Attack<br \/>\n<span style=\"font-weight: 400;\">Instead of guessing the password, it attempts to have a crack at the account holder\u2019s username. For example, using \u201cpassword\u201d as default then guessing different usernames.<\/span><br \/>\n<\/b><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul>\n<li><b>Credential Stuffing<br \/>\n<span style=\"font-weight: 400;\">For attacks using credential stuffing, they utilize successful passwords\/login credentials that have successfully gotten through in previous attempts (e.g. within a company\u2019s logins or accounts).<\/span><\/b><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">Now that you have a more in-depth knowledge of brute force attacks, click <a href=\"https:\/\/www.cldy.com\/sg\/blog\/business-marketing\/protect-business-from-brute-force-attacks\/\">here<\/a> to find out how you can protect your website and your business from these unauthorized access attempts.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In one of our articles What is a brute force attack, we give you an overview of what a brute force attack is: a \u201cforceful\u201d attempt to access a file, account, or network, whether it is authorized or unauthorized access. Here, we will further classify the different types of brute force attacks, when they are [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":0,"comment_status":"open","ping_status":"closed","template":"","meta":{"footnotes":""},"doc_category":[46],"doc_tag":[],"class_list":["post-6733","docs","type-docs","status-publish","hentry","doc_category-glossary"],"year_month":"2026-06","word_count":374,"total_views":0,"reactions":{"happy":0,"normal":0,"sad":0},"author_info":{"name":"syd123","author_nicename":"syd123","author_url":"https:\/\/www.cldy.com\/support\/author\/syd123\/"},"doc_category_info":[{"term_name":"Glossary","term_url":"https:\/\/www.cldy.com\/support\/help-category\/glossary\/"}],"doc_tag_info":[],"_links":{"self":[{"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/docs\/6733","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/docs"}],"about":[{"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/types\/docs"}],"author":[{"embeddable":true,"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/comments?post=6733"}],"version-history":[{"count":12,"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/docs\/6733\/revisions"}],"predecessor-version":[{"id":8323,"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/docs\/6733\/revisions\/8323"}],"wp:attachment":[{"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/media?parent=6733"}],"wp:term":[{"taxonomy":"doc_category","embeddable":true,"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/doc_category?post=6733"},{"taxonomy":"doc_tag","embeddable":true,"href":"https:\/\/www.cldy.com\/support\/wp-json\/wp\/v2\/doc_tag?post=6733"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}