Normally, many companies lock a user out after several failed login attempts (usually 3-5).
Although the success rate per account is quite nominal, the attack is very difficult to detect.
source: www.techworm.net
Microsoft Improves Password Spray Attack Detection Using Machine Learning
Microsoft on Monday announced that it has developed a new algorithm based on machine learning that improves password spray detection in Azure Active Directory (Azure AD).
