Comment by SAI_Peregrinus

SAI_Peregrinus Mar 31, 2025 parent

Usually they're trying username/password combinations that they got from some other breach. They figure people often re-use passwords, so using the same username & password on multiple sites to try to log in often works. That's what a "password spraying" attack is. Even if a breach forces people to change a password they've used on one site they'll often not change it on other sites, so this still tends to work.

jsnell Mar 31, 2025

What you're describing is typically called credential stuffing.

Password spraying is a distinct form of brute-forcing, where there is no link between the password and the user, and the yield is coming from the password being common.

SAI_Peregrinus OP Apr 2, 2025

Right, I swapped them in my head. Thanks for the correction!

This item has no comments currently.