A technique of trying to guess a user’s password by running through a list of likely possibilities, often a list of words from a dictionary. It contrasts to a brute force attack in which all possibilities are tried. The attack works because users often choose easy-to-guess passwords. In anti-spam terminology this also refers to using a dictionary list to guess email account names in a spam campaign.
© 2017 Sophos Limited. All rights reserved.