CHECKERS OBJECTIVE : Try to access passwords quickly and efficiently, in order to gain access to IT applications with user rights.
BRUTE-FORCERS OBJECTIVE : Crack passwords and usernames using test and error method.
These checkers are available covertly for the very specific purpose of validating and accessing accounts. Thanks to the credentials obtained from stolen Databases, hackers can use Checkers and Brute-forcers to launch massive automated connection attempts on websites and other available access pages, in order to verify their validity and confirm the access without authorization. Checkers are automated tools (scripts or software) used by cybercriminals to verify the validity and combination of the stolen username and password with the authentication system of a website, application, an application programming interface (API), etc.
Cybercriminals use brute-forcers to gain automated access to information and user accounts. Brute-forcers are automated tools that attempt to crack passwords or usernames using a test and error method. They can also be used to discover hidden pages and content such as an application or page web.
Brutes-forcers allow cybercriminals to automate the recognition phase of an attack and gain access to a valid account. Access will allow a hacker to gather all information, and more specifically additional personal information on the user, such as an address book, photos, numbers, and payment information. Recognition is the first step used by cyber-attackers to gather information on the targets. Any information, even partial, obtained from data theft, helps hackers who use brute-forces to facilitate the discovery of a password.
These types of attacks are facilitated if victims re-use the same login information on multiple online site platforms. The main reasons for reusing a password is to facilitate the memorization but also a low understanding of the risks involved.
How to protect ?
Configure and deploy custom firewall or reverse proxy rules for web applications, checking for unusual Headers and user-agents.
Avoid useless connection paths and strengthen the checks on the connection paths of mobiles and APIs.
Define a secured policy for network traffic and requests or queries to monitor the access to the web service for any unwanted traffic, including volume and type of requests.
Make users and customers aware of the necessity to use unique passwords for each of their accounts. Using a password vault would help users generate, store, and retrieve their unique and complex passwords.
Enforce a dual factor authentication
Request additional information during the connection, such as CAPTCHA to break the automated logic of the Brute-Forcers.
Slow down or intentionally limit connection / identification attempts. For example, locking accounts after a number of failed logins attempts or introducing a delay in server responses to login requests.
VEEZO analyses and understands the whole IT communications in order to apply instantly the appropriate action to any detected incident and mitigate the cyberattacks.
VEEZO is a complementary service to any traditional security tool offering:
• The network activity is analyzed in real-time detecting any suspicious or malicious communication
• The malicious behaviors are immediately intercepted.
• The appropriate actions are undertaken to mitigate the attacks, notify the managers and deliver the comprehensive incident reports.
Learn about hacking tools and techniques with Veezo.
Everything about the main hackers tools and how to stay protected here :