Security News > 2022 > June > Breaking Down the Zola Hack and Why Password Reuse is so Dangerous
Credential stuffing is a technique by which attackers try likely username and password combinations until they gain access to one or more accounts.
A 2021 study by Specops Software found that users often use the name of their favorite band as their password AC/DC, Metallica, and KISS were all popular password choices.
If the user has used the same username and password for multiple sites then attacker will eventually gain access to these sites.
The attackers know that if the user has used their work email address to set up an account on a consumer-oriented website, then there is a good chance that the user has also used their work password.
One of the best ways to defend against such an attack is to adopt Specops Password Policy.
Specops Password Policy can not only prevent users from using weak passwords, it can also automatically compare user's passwords against a database of credentials that are known to have been leaked.