Businesses need to keep their user accounts safe. But there are billions of username and password pairs available to hackers on the dark web. User tendency to reuse passwords on multiple accounts means that hackers may already have your users’ credentials, stolen from a breached third party.

The result is the credential stuffing attack. Credential stuffing occurs when hackers systematically attempt hundreds or even thousands of possible username and password pairs until they find one that works.