What are the best defenses against a brute force login attack?

Asked 05-May-2022
Viewed 491 times

1 Answer


  • A brute force attack is a sort of cyber assault that use a trial-and-error approach to guess all conceivable password, encryption key, or login information combinations.
  • The easiest and most efficient strategy to stop a brute-force assault is to have a strong password policy.
  • Most websites, especially those powered by WordPress, allow for unlimited login attempts by default. If you're a website administrator, you can install a plugin to limit the number of login attempts on your site in order to prevent brute force assaults.
  • In terms of the second strategy, you should restrict login attempts to users from a specific IP address or range.
  • Your accounts will be more secure with two-factor or multi-factor authentication. When logging into an account, 2FA requires a user to verify their identity before being granted access.
  • 'Completely Automated Public Turing Test to Tell Computers and Humans Apart' is what CAPTCHA stands for.

Read More: Define the salting process and what it’s used for.