Discover published sets by community

Observing a person's keystrokes or screen when they enter their password. This can occur in public spaces. Shielding the keypad when typing and being aware of one's surroundings can prevent this form of attack.

A social engineering attack that tricks users into revealing their passwords. Often involves fake emails or websites. Educating users on recognizing phishing attempts and using multi-factor authentication can prevent these attacks.

A type of surveillance software that records every keystroke made by a user. Keyloggers can capture passwords as they are entered. Use of anti-malware software, frequent system scanning, and virtual keyboards can prevent keylogging.

Attackers use common passwords against many accounts before trying a new password to avoid lockout. This is opposite to brute force where many passwords are tested on one account. Implementing account lockouts and complexity requirements can ward off password spraying attempts.

Attackers use a list of commonly used passwords or phrases instead of random combinations to crack passwords. It is faster than brute force but less effective against strong passwords. Using passwords not found in dictionaries and implementing complexity requirements helps prevent these attacks.

Manipulating individuals into disclosing confidential information, such as passwords. This can take many forms, from pretexting to baiting. Regular security training and awareness can help individuals recognize and prevent social engineering attempts.

A cyber attack where stolen account credentials are used to gain unauthorized access to user accounts through large-scale automated login requests. Using unique passwords for different accounts and implementing multi-factor authentication are effective deterrents.

This technique uses precomputed tables of hash values to reverse cryptographic hash functions, thus finding password matches. Salting passwords and using stronger hash functions are effective prevention methods.

A method where attackers try every possible combination of characters until the correct password is found. This approach is time-consuming but can be effective against weak passwords. Using strong, complex passwords and implementing account lockout policies can prevent these attacks.