4. Brute-Force Attacks
Weak and default passwords are a favorite target of criminals that use brute-force attacks to pry their way into systems. Automated tools have lists of frequently used passwords and passphrases, and default system passwords established by vendors. The tools have become more powerful, cranking through potential passwords in minutes. Verizon recommends businesses slow down the rate of repeated attempts into systems or temporarily locking accounts with multiple fail attempts.