ACSC Releases Advisory on Password Spraying Attacks

["US-CERT" <US-CERT () ncas us-cert gov>]

Cybersecurity and Infrastructure Security Agency Logo

National Cyber Awareness System:



ACSC Releases Advisory on Password Spraying Attacks [ 
https://www.us-cert.gov/ncas/current-activity/2019/08/08/acsc-releases-advisory-password-spraying-attacks ] 08/08/2019 
10:03 AM EDT 
Original release date: August 8, 2019

The Australian Cyber Security Centre (ACSC) has released an advisory on password spraying attacks. Password spraying [ 
https://attack.mitre.org/techniques/T1110/ ] is a type of brute-force attack in which a malicious actor uses a single 
password against targeted user accounts before moving on to attempt a second password, and so on. This technique allows 
the actor to remain undetected by avoiding rapid or frequent account lockouts.

The ACSC provides recommendations for organizations to detect and mitigate these types of attacks against their 
external services, such as webmail, remote desktop access, or cloud-based services.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the ACSC 
advisory on password spraying attacks [ 
https://www.cyber.gov.au/publications/advisory-2019-130-password-spray-attacks-detection-and-mitigation-strategies ] 
and the following CISA tips:
 Choosing and Protecting Passwords [ https://www.us-cert.gov/ncas/tips/ST04-002 ]
 Supplementing Passwords [ https://www.us-cert.gov/ncas/tips/ST05-012 ]

This product is provided subject to this Notification [ https://www.us-cert.gov/privacy/notification ] and this Privacy 
& Use [ https://www.dhs.gov/privacy-policy ] policy.

body { font-size: 1em; font-family: Arial, Verdana, sans-serif; font-weight: normal; font-style: normal; color: 
#333333; } ________________________________________________________________________

A copy of this publication is available at www.us-cert.gov [ https://www.us-cert.gov ]. If you need help or have 
questions, please send an email to info () us-cert gov. Do not reply to this message since this email was sent from a 
notification-only address that is not monitored. To ensure you receive future US-CERT products, please add US-CERT () 
ncas us-cert gov to your address book. 

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ 
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ 
http://www.us-cert.gov/related-resources ]  

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]