A brute-force attack is a technique used by cybercriminals to crack encrypted files with account information. The hacker will use a computer program to automatically check all possible passwords. The program systematically checks all one-digit passwords and then moves on to two-digit combinations and so forth.
Brute-force attacks don’t work for web services like email accounts because the service will restrict access and ban IP addresses that attempt too many logins.
A dictionary attack is a technique used to crack a password-protected computer or server by entering words from the dictionary as passwords. What makes this method different than a brute-force attack is that the system only tries word combinations that are most likely to succeed.
This method is often successful because many users create passwords with common words. However, this method is less effective on passwords that have multi-word phrases or random character combinations.
Database hacking is the method that most of us are familiar with. This is when a hacker gains access to a company’s user database containing all of your login information. In recent years, we’ve seen larger companies like eBay, Yahoo, and Statefarm fall victim to database hacking.
Cybercriminals can gain access to databases by obtaining the login information of an employee and implementing other techniques to gain access from there. As a result, it won’t matter how secure your password is.